]> git.proxmox.com Git - mirror_frr.git/blob - bgpd/bgp_route.c
projects / mirror_frr.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
lib, bgpd: Add ability to specify that some json output should not be pretty
[mirror_frr.git] / bgpd / bgp_route.c
1 /* BGP routing information
2 * Copyright (C) 1996, 97, 98, 99 Kunihiro Ishiguro
3 * Copyright (C) 2016 Job Snijders <job@instituut.net>
4 *
5 * This file is part of GNU Zebra.
6 *
7 * GNU Zebra is free software; you can redistribute it and/or modify it
8 * under the terms of the GNU General Public License as published by the
9 * Free Software Foundation; either version 2, or (at your option) any
10 * later version.
11 *
12 * GNU Zebra is distributed in the hope that it will be useful, but
13 * WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
15 * General Public License for more details.
16 *
17 * You should have received a copy of the GNU General Public License along
18 * with this program; see the file COPYING; if not, write to the Free Software
19 * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA
20 */
21
22 #include <zebra.h>
23 #include <math.h>
24
25 #include "printfrr.h"
26 #include "frrstr.h"
27 #include "prefix.h"
28 #include "linklist.h"
29 #include "memory.h"
30 #include "command.h"
31 #include "stream.h"
32 #include "filter.h"
33 #include "log.h"
34 #include "routemap.h"
35 #include "buffer.h"
36 #include "sockunion.h"
37 #include "plist.h"
38 #include "thread.h"
39 #include "workqueue.h"
40 #include "queue.h"
41 #include "memory.h"
42 #include "srv6.h"
43 #include "lib/json.h"
44 #include "lib_errors.h"
45 #include "zclient.h"
46 #include "bgpd/bgpd.h"
47 #include "bgpd/bgp_table.h"
48 #include "bgpd/bgp_route.h"
49 #include "bgpd/bgp_attr.h"
50 #include "bgpd/bgp_debug.h"
51 #include "bgpd/bgp_errors.h"
52 #include "bgpd/bgp_aspath.h"
53 #include "bgpd/bgp_regex.h"
54 #include "bgpd/bgp_community.h"
55 #include "bgpd/bgp_community_alias.h"
56 #include "bgpd/bgp_ecommunity.h"
57 #include "bgpd/bgp_lcommunity.h"
58 #include "bgpd/bgp_clist.h"
59 #include "bgpd/bgp_packet.h"
60 #include "bgpd/bgp_filter.h"
61 #include "bgpd/bgp_fsm.h"
62 #include "bgpd/bgp_mplsvpn.h"
63 #include "bgpd/bgp_nexthop.h"
64 #include "bgpd/bgp_damp.h"
65 #include "bgpd/bgp_advertise.h"
66 #include "bgpd/bgp_zebra.h"
67 #include "bgpd/bgp_vty.h"
68 #include "bgpd/bgp_mpath.h"
69 #include "bgpd/bgp_nht.h"
70 #include "bgpd/bgp_updgrp.h"
71 #include "bgpd/bgp_label.h"
72 #include "bgpd/bgp_addpath.h"
73 #include "bgpd/bgp_mac.h"
74 #include "bgpd/bgp_network.h"
75 #include "bgpd/bgp_trace.h"
76 #include "bgpd/bgp_rpki.h"
77
78 #ifdef ENABLE_BGP_VNC
79 #include "bgpd/rfapi/rfapi_backend.h"
80 #include "bgpd/rfapi/vnc_import_bgp.h"
81 #include "bgpd/rfapi/vnc_export_bgp.h"
82 #endif
83 #include "bgpd/bgp_encap_types.h"
84 #include "bgpd/bgp_encap_tlv.h"
85 #include "bgpd/bgp_evpn.h"
86 #include "bgpd/bgp_evpn_mh.h"
87 #include "bgpd/bgp_evpn_vty.h"
88 #include "bgpd/bgp_flowspec.h"
89 #include "bgpd/bgp_flowspec_util.h"
90 #include "bgpd/bgp_pbr.h"
91
92 #include "bgpd/bgp_route_clippy.c"
93
94 DEFINE_HOOK(bgp_snmp_update_stats,
95 (struct bgp_node *rn, struct bgp_path_info *pi, bool added),
96 (rn, pi, added));
97
98 DEFINE_HOOK(bgp_rpki_prefix_status,
99 (struct peer *peer, struct attr *attr,
100 const struct prefix *prefix),
101 (peer, attr, prefix));
102
103 /* Extern from bgp_dump.c */
104 extern const char *bgp_origin_str[];
105 extern const char *bgp_origin_long_str[];
106
107 /* PMSI strings. */
108 #define PMSI_TNLTYPE_STR_NO_INFO "No info"
109 #define PMSI_TNLTYPE_STR_DEFAULT PMSI_TNLTYPE_STR_NO_INFO
110 static const struct message bgp_pmsi_tnltype_str[] = {
111 {PMSI_TNLTYPE_NO_INFO, PMSI_TNLTYPE_STR_NO_INFO},
112 {PMSI_TNLTYPE_RSVP_TE_P2MP, "RSVP-TE P2MP"},
113 {PMSI_TNLTYPE_MLDP_P2MP, "mLDP P2MP"},
114 {PMSI_TNLTYPE_PIM_SSM, "PIM-SSM"},
115 {PMSI_TNLTYPE_PIM_SM, "PIM-SM"},
116 {PMSI_TNLTYPE_PIM_BIDIR, "PIM-BIDIR"},
117 {PMSI_TNLTYPE_INGR_REPL, "Ingress Replication"},
118 {PMSI_TNLTYPE_MLDP_MP2MP, "mLDP MP2MP"},
119 {0}
120 };
121
122 #define VRFID_NONE_STR "-"
123 #define SOFT_RECONFIG_TASK_MAX_PREFIX 25000
124
125 DEFINE_HOOK(bgp_process,
126 (struct bgp * bgp, afi_t afi, safi_t safi, struct bgp_dest *bn,
127 struct peer *peer, bool withdraw),
128 (bgp, afi, safi, bn, peer, withdraw));
129
130 /** Test if path is suppressed. */
131 static bool bgp_path_suppressed(struct bgp_path_info *pi)
132 {
133 if (pi->extra == NULL || pi->extra->aggr_suppressors == NULL)
134 return false;
135
136 return listcount(pi->extra->aggr_suppressors) > 0;
137 }
138
139 struct bgp_dest *bgp_afi_node_get(struct bgp_table *table, afi_t afi,
140 safi_t safi, const struct prefix *p,
141 struct prefix_rd *prd)
142 {
143 struct bgp_dest *dest;
144 struct bgp_dest *pdest = NULL;
145
146 assert(table);
147
148 if ((safi == SAFI_MPLS_VPN) || (safi == SAFI_ENCAP)
149 || (safi == SAFI_EVPN)) {
150 pdest = bgp_node_get(table, (struct prefix *)prd);
151
152 if (!bgp_dest_has_bgp_path_info_data(pdest))
153 bgp_dest_set_bgp_table_info(
154 pdest, bgp_table_init(table->bgp, afi, safi));
155 else
156 bgp_dest_unlock_node(pdest);
157 table = bgp_dest_get_bgp_table_info(pdest);
158 }
159
160 dest = bgp_node_get(table, p);
161
162 if ((safi == SAFI_MPLS_VPN) || (safi == SAFI_ENCAP)
163 || (safi == SAFI_EVPN))
164 dest->pdest = pdest;
165
166 return dest;
167 }
168
169 struct bgp_dest *bgp_afi_node_lookup(struct bgp_table *table, afi_t afi,
170 safi_t safi, const struct prefix *p,
171 struct prefix_rd *prd)
172 {
173 struct bgp_dest *dest;
174 struct bgp_dest *pdest = NULL;
175
176 if (!table)
177 return NULL;
178
179 if ((safi == SAFI_MPLS_VPN) || (safi == SAFI_ENCAP)
180 || (safi == SAFI_EVPN)) {
181 pdest = bgp_node_lookup(table, (struct prefix *)prd);
182 if (!pdest)
183 return NULL;
184
185 if (!bgp_dest_has_bgp_path_info_data(pdest)) {
186 bgp_dest_unlock_node(pdest);
187 return NULL;
188 }
189
190 table = bgp_dest_get_bgp_table_info(pdest);
191 }
192
193 dest = bgp_node_lookup(table, p);
194
195 return dest;
196 }
197
198 /* Allocate bgp_path_info_extra */
199 static struct bgp_path_info_extra *bgp_path_info_extra_new(void)
200 {
201 struct bgp_path_info_extra *new;
202 new = XCALLOC(MTYPE_BGP_ROUTE_EXTRA,
203 sizeof(struct bgp_path_info_extra));
204 new->label[0] = MPLS_INVALID_LABEL;
205 new->num_labels = 0;
206 new->bgp_fs_pbr = NULL;
207 new->bgp_fs_iprule = NULL;
208 return new;
209 }
210
211 void bgp_path_info_extra_free(struct bgp_path_info_extra **extra)
212 {
213 struct bgp_path_info_extra *e;
214
215 if (!extra || !*extra)
216 return;
217
218 e = *extra;
219 if (e->damp_info)
220 bgp_damp_info_free(e->damp_info, 0, e->damp_info->afi,
221 e->damp_info->safi);
222
223 e->damp_info = NULL;
224 if (e->parent) {
225 struct bgp_path_info *bpi = (struct bgp_path_info *)e->parent;
226
227 if (bpi->net) {
228 /* FIXME: since multiple e may have the same e->parent
229 * and e->parent->net is holding a refcount for each
230 * of them, we need to do some fudging here.
231 *
232 * WARNING: if bpi->net->lock drops to 0, bpi may be
233 * freed as well (because bpi->net was holding the
234 * last reference to bpi) => write after free!
235 */
236 unsigned refcount;
237
238 bpi = bgp_path_info_lock(bpi);
239 refcount = bgp_dest_get_lock_count(bpi->net) - 1;
240 bgp_dest_unlock_node((struct bgp_dest *)bpi->net);
241 if (!refcount)
242 bpi->net = NULL;
243 bgp_path_info_unlock(bpi);
244 }
245 bgp_path_info_unlock(e->parent);
246 e->parent = NULL;
247 }
248
249 if (e->bgp_orig)
250 bgp_unlock(e->bgp_orig);
251
252 if (e->peer_orig)
253 peer_unlock(e->peer_orig);
254
255 if (e->aggr_suppressors)
256 list_delete(&e->aggr_suppressors);
257
258 if (e->mh_info)
259 bgp_evpn_path_mh_info_free(e->mh_info);
260
261 if ((*extra)->bgp_fs_iprule)
262 list_delete(&((*extra)->bgp_fs_iprule));
263 if ((*extra)->bgp_fs_pbr)
264 list_delete(&((*extra)->bgp_fs_pbr));
265 XFREE(MTYPE_BGP_ROUTE_EXTRA, *extra);
266 }
267
268 /* Get bgp_path_info extra information for the given bgp_path_info, lazy
269 * allocated if required.
270 */
271 struct bgp_path_info_extra *bgp_path_info_extra_get(struct bgp_path_info *pi)
272 {
273 if (!pi->extra)
274 pi->extra = bgp_path_info_extra_new();
275 return pi->extra;
276 }
277
278 /* Free bgp route information. */
279 void bgp_path_info_free_with_caller(const char *name,
280 struct bgp_path_info *path)
281 {
282 frrtrace(2, frr_bgp, bgp_path_info_free, path, name);
283 bgp_attr_unintern(&path->attr);
284
285 bgp_unlink_nexthop(path);
286 bgp_path_info_extra_free(&path->extra);
287 bgp_path_info_mpath_free(&path->mpath);
288 if (path->net)
289 bgp_addpath_free_info_data(&path->tx_addpath,
290 &path->net->tx_addpath);
291
292 peer_unlock(path->peer); /* bgp_path_info peer reference */
293
294 XFREE(MTYPE_BGP_ROUTE, path);
295 }
296
297 struct bgp_path_info *bgp_path_info_lock(struct bgp_path_info *path)
298 {
299 path->lock++;
300 return path;
301 }
302
303 struct bgp_path_info *bgp_path_info_unlock(struct bgp_path_info *path)
304 {
305 assert(path && path->lock > 0);
306 path->lock--;
307
308 if (path->lock == 0) {
309 bgp_path_info_free(path);
310 return NULL;
311 }
312
313 return path;
314 }
315
316 /* This function sets flag BGP_NODE_SELECT_DEFER based on condition */
317 static int bgp_dest_set_defer_flag(struct bgp_dest *dest, bool delete)
318 {
319 struct peer *peer;
320 struct bgp_path_info *old_pi, *nextpi;
321 bool set_flag = false;
322 struct bgp *bgp = NULL;
323 struct bgp_table *table = NULL;
324 afi_t afi = 0;
325 safi_t safi = 0;
326
327 /* If the flag BGP_NODE_SELECT_DEFER is set and new path is added
328 * then the route selection is deferred
329 */
330 if (CHECK_FLAG(dest->flags, BGP_NODE_SELECT_DEFER) && (!delete))
331 return 0;
332
333 if (CHECK_FLAG(dest->flags, BGP_NODE_PROCESS_SCHEDULED)) {
334 if (BGP_DEBUG(update, UPDATE_OUT))
335 zlog_debug(
336 "Route %pBD is in workqueue and being processed, not deferred.",
337 dest);
338
339 return 0;
340 }
341
342 table = bgp_dest_table(dest);
343 if (table) {
344 bgp = table->bgp;
345 afi = table->afi;
346 safi = table->safi;
347 }
348
349 for (old_pi = bgp_dest_get_bgp_path_info(dest);
350 (old_pi != NULL) && (nextpi = old_pi->next, 1); old_pi = nextpi) {
351 if (CHECK_FLAG(old_pi->flags, BGP_PATH_SELECTED))
352 continue;
353
354 /* Route selection is deferred if there is a stale path which
355 * which indicates peer is in restart mode
356 */
357 if (CHECK_FLAG(old_pi->flags, BGP_PATH_STALE)
358 && (old_pi->sub_type == BGP_ROUTE_NORMAL)) {
359 set_flag = true;
360 } else {
361 /* If the peer is graceful restart capable and peer is
362 * restarting mode, set the flag BGP_NODE_SELECT_DEFER
363 */
364 peer = old_pi->peer;
365 if (BGP_PEER_GRACEFUL_RESTART_CAPABLE(peer)
366 && BGP_PEER_RESTARTING_MODE(peer)
367 && (old_pi
368 && old_pi->sub_type == BGP_ROUTE_NORMAL)) {
369 set_flag = true;
370 }
371 }
372 if (set_flag)
373 break;
374 }
375
376 /* Set the flag BGP_NODE_SELECT_DEFER if route selection deferral timer
377 * is active
378 */
379 if (set_flag && table) {
380 if (bgp && (bgp->gr_info[afi][safi].t_select_deferral)) {
381 if (!CHECK_FLAG(dest->flags, BGP_NODE_SELECT_DEFER))
382 bgp->gr_info[afi][safi].gr_deferred++;
383 SET_FLAG(dest->flags, BGP_NODE_SELECT_DEFER);
384 if (BGP_DEBUG(update, UPDATE_OUT))
385 zlog_debug("DEFER route %pBD, dest %p", dest,
386 dest);
387 return 0;
388 }
389 }
390 return -1;
391 }
392
393 void bgp_path_info_add_with_caller(const char *name, struct bgp_dest *dest,
394 struct bgp_path_info *pi)
395 {
396 frrtrace(3, frr_bgp, bgp_path_info_add, dest, pi, name);
397 struct bgp_path_info *top;
398
399 top = bgp_dest_get_bgp_path_info(dest);
400
401 pi->next = top;
402 pi->prev = NULL;
403 if (top)
404 top->prev = pi;
405 bgp_dest_set_bgp_path_info(dest, pi);
406
407 bgp_path_info_lock(pi);
408 bgp_dest_lock_node(dest);
409 peer_lock(pi->peer); /* bgp_path_info peer reference */
410 bgp_dest_set_defer_flag(dest, false);
411 hook_call(bgp_snmp_update_stats, dest, pi, true);
412 }
413
414 /* Do the actual removal of info from RIB, for use by bgp_process
415 completion callback *only* */
416 void bgp_path_info_reap(struct bgp_dest *dest, struct bgp_path_info *pi)
417 {
418 if (pi->next)
419 pi->next->prev = pi->prev;
420 if (pi->prev)
421 pi->prev->next = pi->next;
422 else
423 bgp_dest_set_bgp_path_info(dest, pi->next);
424
425 bgp_path_info_mpath_dequeue(pi);
426 bgp_path_info_unlock(pi);
427 hook_call(bgp_snmp_update_stats, dest, pi, false);
428 bgp_dest_unlock_node(dest);
429 }
430
431 void bgp_path_info_delete(struct bgp_dest *dest, struct bgp_path_info *pi)
432 {
433 bgp_path_info_set_flag(dest, pi, BGP_PATH_REMOVED);
434 /* set of previous already took care of pcount */
435 UNSET_FLAG(pi->flags, BGP_PATH_VALID);
436 }
437
438 /* undo the effects of a previous call to bgp_path_info_delete; typically
439 called when a route is deleted and then quickly re-added before the
440 deletion has been processed */
441 void bgp_path_info_restore(struct bgp_dest *dest, struct bgp_path_info *pi)
442 {
443 bgp_path_info_unset_flag(dest, pi, BGP_PATH_REMOVED);
444 /* unset of previous already took care of pcount */
445 SET_FLAG(pi->flags, BGP_PATH_VALID);
446 }
447
448 /* Adjust pcount as required */
449 static void bgp_pcount_adjust(struct bgp_dest *dest, struct bgp_path_info *pi)
450 {
451 struct bgp_table *table;
452
453 assert(dest && bgp_dest_table(dest));
454 assert(pi && pi->peer && pi->peer->bgp);
455
456 table = bgp_dest_table(dest);
457
458 if (pi->peer == pi->peer->bgp->peer_self)
459 return;
460
461 if (!BGP_PATH_COUNTABLE(pi)
462 && CHECK_FLAG(pi->flags, BGP_PATH_COUNTED)) {
463
464 UNSET_FLAG(pi->flags, BGP_PATH_COUNTED);
465
466 /* slight hack, but more robust against errors. */
467 if (pi->peer->pcount[table->afi][table->safi])
468 pi->peer->pcount[table->afi][table->safi]--;
469 else
470 flog_err(EC_LIB_DEVELOPMENT,
471 "Asked to decrement 0 prefix count for peer");
472 } else if (BGP_PATH_COUNTABLE(pi)
473 && !CHECK_FLAG(pi->flags, BGP_PATH_COUNTED)) {
474 SET_FLAG(pi->flags, BGP_PATH_COUNTED);
475 pi->peer->pcount[table->afi][table->safi]++;
476 }
477 }
478
479 static int bgp_label_index_differs(struct bgp_path_info *pi1,
480 struct bgp_path_info *pi2)
481 {
482 return (!(pi1->attr->label_index == pi2->attr->label_index));
483 }
484
485 /* Set/unset bgp_path_info flags, adjusting any other state as needed.
486 * This is here primarily to keep prefix-count in check.
487 */
488 void bgp_path_info_set_flag(struct bgp_dest *dest, struct bgp_path_info *pi,
489 uint32_t flag)
490 {
491 SET_FLAG(pi->flags, flag);
492
493 /* early bath if we know it's not a flag that changes countability state
494 */
495 if (!CHECK_FLAG(flag,
496 BGP_PATH_VALID | BGP_PATH_HISTORY | BGP_PATH_REMOVED))
497 return;
498
499 bgp_pcount_adjust(dest, pi);
500 }
501
502 void bgp_path_info_unset_flag(struct bgp_dest *dest, struct bgp_path_info *pi,
503 uint32_t flag)
504 {
505 UNSET_FLAG(pi->flags, flag);
506
507 /* early bath if we know it's not a flag that changes countability state
508 */
509 if (!CHECK_FLAG(flag,
510 BGP_PATH_VALID | BGP_PATH_HISTORY | BGP_PATH_REMOVED))
511 return;
512
513 bgp_pcount_adjust(dest, pi);
514 }
515
516 /* Get MED value. If MED value is missing and "bgp bestpath
517 missing-as-worst" is specified, treat it as the worst value. */
518 static uint32_t bgp_med_value(struct attr *attr, struct bgp *bgp)
519 {
520 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC))
521 return attr->med;
522 else {
523 if (CHECK_FLAG(bgp->flags, BGP_FLAG_MED_MISSING_AS_WORST))
524 return BGP_MED_MAX;
525 else
526 return 0;
527 }
528 }
529
530 void bgp_path_info_path_with_addpath_rx_str(struct bgp_path_info *pi, char *buf,
531 size_t buf_len)
532 {
533 if (pi->addpath_rx_id)
534 snprintf(buf, buf_len, "path %s (addpath rxid %d)",
535 pi->peer->host, pi->addpath_rx_id);
536 else
537 snprintf(buf, buf_len, "path %s", pi->peer->host);
538 }
539
540
541 /*
542 * Get the ultimate path info.
543 */
544 struct bgp_path_info *bgp_get_imported_bpi_ultimate(struct bgp_path_info *info)
545 {
546 struct bgp_path_info *bpi_ultimate;
547
548 if (info->sub_type != BGP_ROUTE_IMPORTED)
549 return info;
550
551 for (bpi_ultimate = info;
552 bpi_ultimate->extra && bpi_ultimate->extra->parent;
553 bpi_ultimate = bpi_ultimate->extra->parent)
554 ;
555
556 return bpi_ultimate;
557 }
558
559 /* Compare two bgp route entity. If 'new' is preferable over 'exist' return 1.
560 */
561 static int bgp_path_info_cmp(struct bgp *bgp, struct bgp_path_info *new,
562 struct bgp_path_info *exist, int *paths_eq,
563 struct bgp_maxpaths_cfg *mpath_cfg, int debug,
564 char *pfx_buf, afi_t afi, safi_t safi,
565 enum bgp_path_selection_reason *reason)
566 {
567 const struct prefix *new_p;
568 struct attr *newattr, *existattr;
569 enum bgp_peer_sort new_sort;
570 enum bgp_peer_sort exist_sort;
571 uint32_t new_pref;
572 uint32_t exist_pref;
573 uint32_t new_med;
574 uint32_t exist_med;
575 uint32_t new_weight;
576 uint32_t exist_weight;
577 uint32_t newm, existm;
578 struct in_addr new_id;
579 struct in_addr exist_id;
580 int new_cluster;
581 int exist_cluster;
582 int internal_as_route;
583 int confed_as_route;
584 int ret = 0;
585 int igp_metric_ret = 0;
586 int peer_sort_ret = -1;
587 char new_buf[PATH_ADDPATH_STR_BUFFER];
588 char exist_buf[PATH_ADDPATH_STR_BUFFER];
589 uint32_t new_mm_seq;
590 uint32_t exist_mm_seq;
591 int nh_cmp;
592 esi_t *exist_esi;
593 esi_t *new_esi;
594 bool same_esi;
595 bool old_proxy;
596 bool new_proxy;
597 bool new_origin, exist_origin;
598 struct bgp_path_info *bpi_ultimate;
599
600 *paths_eq = 0;
601
602 /* 0. Null check. */
603 if (new == NULL) {
604 *reason = bgp_path_selection_none;
605 if (debug)
606 zlog_debug("%s: new is NULL", pfx_buf);
607 return 0;
608 }
609
610 if (debug) {
611 bpi_ultimate = bgp_get_imported_bpi_ultimate(new);
612 bgp_path_info_path_with_addpath_rx_str(bpi_ultimate, new_buf,
613 sizeof(new_buf));
614 }
615
616 if (exist == NULL) {
617 *reason = bgp_path_selection_first;
618 if (debug)
619 zlog_debug("%s(%s): %s is the initial bestpath",
620 pfx_buf, bgp->name_pretty, new_buf);
621 return 1;
622 }
623
624 if (debug) {
625 bpi_ultimate = bgp_get_imported_bpi_ultimate(exist);
626 bgp_path_info_path_with_addpath_rx_str(bpi_ultimate, exist_buf,
627 sizeof(exist_buf));
628 zlog_debug("%s(%s): Comparing %s flags 0x%x with %s flags 0x%x",
629 pfx_buf, bgp->name_pretty, new_buf, new->flags,
630 exist_buf, exist->flags);
631 }
632
633 newattr = new->attr;
634 existattr = exist->attr;
635
636 /* A BGP speaker that has advertised the "Long-lived Graceful Restart
637 * Capability" to a neighbor MUST perform the following upon receiving
638 * a route from that neighbor with the "LLGR_STALE" community, or upon
639 * attaching the "LLGR_STALE" community itself per Section 4.2:
640 *
641 * Treat the route as the least-preferred in route selection (see
642 * below). See the Risks of Depreferencing Routes section (Section 5.2)
643 * for a discussion of potential risks inherent in doing this.
644 */
645 if (bgp_attr_get_community(newattr) &&
646 community_include(bgp_attr_get_community(newattr),
647 COMMUNITY_LLGR_STALE)) {
648 if (debug)
649 zlog_debug(
650 "%s: %s wins over %s due to LLGR_STALE community",
651 pfx_buf, new_buf, exist_buf);
652 return 0;
653 }
654
655 if (bgp_attr_get_community(existattr) &&
656 community_include(bgp_attr_get_community(existattr),
657 COMMUNITY_LLGR_STALE)) {
658 if (debug)
659 zlog_debug(
660 "%s: %s loses to %s due to LLGR_STALE community",
661 pfx_buf, new_buf, exist_buf);
662 return 1;
663 }
664
665 new_p = bgp_dest_get_prefix(new->net);
666
667 /* For EVPN routes, we cannot just go by local vs remote, we have to
668 * look at the MAC mobility sequence number, if present.
669 */
670 if ((safi == SAFI_EVPN)
671 && (new_p->u.prefix_evpn.route_type == BGP_EVPN_MAC_IP_ROUTE)) {
672 /* This is an error condition described in RFC 7432 Section
673 * 15.2. The RFC
674 * states that in this scenario "the PE MUST alert the operator"
675 * but it
676 * does not state what other action to take. In order to provide
677 * some
678 * consistency in this scenario we are going to prefer the path
679 * with the
680 * sticky flag.
681 */
682 if (newattr->sticky != existattr->sticky) {
683 if (!debug) {
684 prefix2str(new_p, pfx_buf,
685 sizeof(*pfx_buf)
686 * PREFIX2STR_BUFFER);
687 bgp_path_info_path_with_addpath_rx_str(
688 new, new_buf, sizeof(new_buf));
689 bgp_path_info_path_with_addpath_rx_str(
690 exist, exist_buf, sizeof(exist_buf));
691 }
692
693 if (newattr->sticky && !existattr->sticky) {
694 *reason = bgp_path_selection_evpn_sticky_mac;
695 if (debug)
696 zlog_debug(
697 "%s: %s wins over %s due to sticky MAC flag",
698 pfx_buf, new_buf, exist_buf);
699 return 1;
700 }
701
702 if (!newattr->sticky && existattr->sticky) {
703 *reason = bgp_path_selection_evpn_sticky_mac;
704 if (debug)
705 zlog_debug(
706 "%s: %s loses to %s due to sticky MAC flag",
707 pfx_buf, new_buf, exist_buf);
708 return 0;
709 }
710 }
711
712 new_esi = bgp_evpn_attr_get_esi(newattr);
713 exist_esi = bgp_evpn_attr_get_esi(existattr);
714 if (bgp_evpn_is_esi_valid(new_esi) &&
715 !memcmp(new_esi, exist_esi, sizeof(esi_t))) {
716 same_esi = true;
717 } else {
718 same_esi = false;
719 }
720
721 /* If both paths have the same non-zero ES and
722 * one path is local it wins.
723 * PS: Note the local path wins even if the remote
724 * has the higher MM seq. The local path's
725 * MM seq will be fixed up to match the highest
726 * rem seq, subsequently.
727 */
728 if (same_esi) {
729 char esi_buf[ESI_STR_LEN];
730
731 if (bgp_evpn_is_path_local(bgp, new)) {
732 *reason = bgp_path_selection_evpn_local_path;
733 if (debug)
734 zlog_debug(
735 "%s: %s wins over %s as ES %s is same and local",
736 pfx_buf, new_buf, exist_buf,
737 esi_to_str(new_esi, esi_buf,
738 sizeof(esi_buf)));
739 return 1;
740 }
741 if (bgp_evpn_is_path_local(bgp, exist)) {
742 *reason = bgp_path_selection_evpn_local_path;
743 if (debug)
744 zlog_debug(
745 "%s: %s loses to %s as ES %s is same and local",
746 pfx_buf, new_buf, exist_buf,
747 esi_to_str(new_esi, esi_buf,
748 sizeof(esi_buf)));
749 return 0;
750 }
751 }
752
753 new_mm_seq = mac_mobility_seqnum(newattr);
754 exist_mm_seq = mac_mobility_seqnum(existattr);
755
756 if (new_mm_seq > exist_mm_seq) {
757 *reason = bgp_path_selection_evpn_seq;
758 if (debug)
759 zlog_debug(
760 "%s: %s wins over %s due to MM seq %u > %u",
761 pfx_buf, new_buf, exist_buf, new_mm_seq,
762 exist_mm_seq);
763 return 1;
764 }
765
766 if (new_mm_seq < exist_mm_seq) {
767 *reason = bgp_path_selection_evpn_seq;
768 if (debug)
769 zlog_debug(
770 "%s: %s loses to %s due to MM seq %u < %u",
771 pfx_buf, new_buf, exist_buf, new_mm_seq,
772 exist_mm_seq);
773 return 0;
774 }
775
776 /* if the sequence numbers and ESI are the same and one path
777 * is non-proxy it wins (over proxy)
778 */
779 new_proxy = bgp_evpn_attr_is_proxy(newattr);
780 old_proxy = bgp_evpn_attr_is_proxy(existattr);
781 if (same_esi && bgp_evpn_attr_is_local_es(newattr) &&
782 old_proxy != new_proxy) {
783 if (!new_proxy) {
784 *reason = bgp_path_selection_evpn_non_proxy;
785 if (debug)
786 zlog_debug(
787 "%s: %s wins over %s, same seq/es and non-proxy",
788 pfx_buf, new_buf, exist_buf);
789 return 1;
790 }
791
792 *reason = bgp_path_selection_evpn_non_proxy;
793 if (debug)
794 zlog_debug(
795 "%s: %s loses to %s, same seq/es and non-proxy",
796 pfx_buf, new_buf, exist_buf);
797 return 0;
798 }
799
800 /*
801 * if sequence numbers are the same path with the lowest IP
802 * wins
803 */
804 nh_cmp = bgp_path_info_nexthop_cmp(new, exist);
805 if (nh_cmp < 0) {
806 *reason = bgp_path_selection_evpn_lower_ip;
807 if (debug)
808 zlog_debug(
809 "%s: %s wins over %s due to same MM seq %u and lower IP %pI4",
810 pfx_buf, new_buf, exist_buf, new_mm_seq,
811 &new->attr->nexthop);
812 return 1;
813 }
814 if (nh_cmp > 0) {
815 *reason = bgp_path_selection_evpn_lower_ip;
816 if (debug)
817 zlog_debug(
818 "%s: %s loses to %s due to same MM seq %u and higher IP %pI4",
819 pfx_buf, new_buf, exist_buf, new_mm_seq,
820 &new->attr->nexthop);
821 return 0;
822 }
823 }
824
825 /* 1. Weight check. */
826 new_weight = newattr->weight;
827 exist_weight = existattr->weight;
828
829 if (new_weight > exist_weight) {
830 *reason = bgp_path_selection_weight;
831 if (debug)
832 zlog_debug("%s: %s wins over %s due to weight %d > %d",
833 pfx_buf, new_buf, exist_buf, new_weight,
834 exist_weight);
835 return 1;
836 }
837
838 if (new_weight < exist_weight) {
839 *reason = bgp_path_selection_weight;
840 if (debug)
841 zlog_debug("%s: %s loses to %s due to weight %d < %d",
842 pfx_buf, new_buf, exist_buf, new_weight,
843 exist_weight);
844 return 0;
845 }
846
847 /* 2. Local preference check. */
848 new_pref = exist_pref = bgp->default_local_pref;
849
850 if (newattr->flag & ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF))
851 new_pref = newattr->local_pref;
852 if (existattr->flag & ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF))
853 exist_pref = existattr->local_pref;
854
855 if (new_pref > exist_pref) {
856 *reason = bgp_path_selection_local_pref;
857 if (debug)
858 zlog_debug(
859 "%s: %s wins over %s due to localpref %d > %d",
860 pfx_buf, new_buf, exist_buf, new_pref,
861 exist_pref);
862 return 1;
863 }
864
865 if (new_pref < exist_pref) {
866 *reason = bgp_path_selection_local_pref;
867 if (debug)
868 zlog_debug(
869 "%s: %s loses to %s due to localpref %d < %d",
870 pfx_buf, new_buf, exist_buf, new_pref,
871 exist_pref);
872 return 0;
873 }
874
875 /* If a BGP speaker supports ACCEPT_OWN and is configured for the
876 * extensions defined in this document, the following step is inserted
877 * after the LOCAL_PREF comparison step in the BGP decision process:
878 * When comparing a pair of routes for a BGP destination, the
879 * route with the ACCEPT_OWN community attached is preferred over
880 * the route that does not have the community.
881 * This extra step MUST only be invoked during the best path selection
882 * process of VPN-IP routes.
883 */
884 if (safi == SAFI_MPLS_VPN &&
885 (CHECK_FLAG(new->peer->af_flags[afi][safi], PEER_FLAG_ACCEPT_OWN) ||
886 CHECK_FLAG(exist->peer->af_flags[afi][safi],
887 PEER_FLAG_ACCEPT_OWN))) {
888 bool new_accept_own = false;
889 bool exist_accept_own = false;
890 uint32_t accept_own = COMMUNITY_ACCEPT_OWN;
891
892 if (newattr->flag & ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES))
893 new_accept_own = community_include(
894 bgp_attr_get_community(newattr), accept_own);
895 if (existattr->flag & ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES))
896 exist_accept_own = community_include(
897 bgp_attr_get_community(existattr), accept_own);
898
899 if (new_accept_own && !exist_accept_own) {
900 *reason = bgp_path_selection_accept_own;
901 if (debug)
902 zlog_debug(
903 "%s: %s wins over %s due to accept-own",
904 pfx_buf, new_buf, exist_buf);
905 return 1;
906 }
907
908 if (!new_accept_own && exist_accept_own) {
909 *reason = bgp_path_selection_accept_own;
910 if (debug)
911 zlog_debug(
912 "%s: %s loses to %s due to accept-own",
913 pfx_buf, new_buf, exist_buf);
914 return 0;
915 }
916 }
917
918 /* Tie-breaker - AIGP (Metric TLV) attribute */
919 if (CHECK_FLAG(newattr->flag, ATTR_FLAG_BIT(BGP_ATTR_AIGP)) &&
920 CHECK_FLAG(existattr->flag, ATTR_FLAG_BIT(BGP_ATTR_AIGP)) &&
921 CHECK_FLAG(bgp->flags, BGP_FLAG_COMPARE_AIGP)) {
922 uint64_t new_aigp = bgp_attr_get_aigp_metric(newattr);
923 uint64_t exist_aigp = bgp_attr_get_aigp_metric(existattr);
924
925 if (new_aigp < exist_aigp) {
926 *reason = bgp_path_selection_aigp;
927 if (debug)
928 zlog_debug(
929 "%s: %s wins over %s due to AIGP %" PRIu64
930 " < %" PRIu64,
931 pfx_buf, new_buf, exist_buf, new_aigp,
932 exist_aigp);
933 return 1;
934 }
935
936 if (new_aigp > exist_aigp) {
937 *reason = bgp_path_selection_aigp;
938 if (debug)
939 zlog_debug(
940 "%s: %s loses to %s due to AIGP %" PRIu64
941 " > %" PRIu64,
942 pfx_buf, new_buf, exist_buf, new_aigp,
943 exist_aigp);
944 return 0;
945 }
946 }
947
948 /* 3. Local route check. We prefer:
949 * - BGP_ROUTE_STATIC
950 * - BGP_ROUTE_AGGREGATE
951 * - BGP_ROUTE_REDISTRIBUTE
952 */
953 new_origin = !(new->sub_type == BGP_ROUTE_NORMAL ||
954 new->sub_type == BGP_ROUTE_IMPORTED);
955 exist_origin = !(exist->sub_type == BGP_ROUTE_NORMAL ||
956 exist->sub_type == BGP_ROUTE_IMPORTED);
957
958 if (new_origin && !exist_origin) {
959 *reason = bgp_path_selection_local_route;
960 if (debug)
961 zlog_debug(
962 "%s: %s wins over %s due to preferred BGP_ROUTE type",
963 pfx_buf, new_buf, exist_buf);
964 return 1;
965 }
966
967 if (!new_origin && exist_origin) {
968 *reason = bgp_path_selection_local_route;
969 if (debug)
970 zlog_debug(
971 "%s: %s loses to %s due to preferred BGP_ROUTE type",
972 pfx_buf, new_buf, exist_buf);
973 return 0;
974 }
975
976 /* Here if these are imported routes then get ultimate pi for
977 * path compare.
978 */
979 new = bgp_get_imported_bpi_ultimate(new);
980 exist = bgp_get_imported_bpi_ultimate(exist);
981 newattr = new->attr;
982 existattr = exist->attr;
983
984 /* 4. AS path length check. */
985 if (!CHECK_FLAG(bgp->flags, BGP_FLAG_ASPATH_IGNORE)) {
986 int exist_hops = aspath_count_hops(existattr->aspath);
987 int exist_confeds = aspath_count_confeds(existattr->aspath);
988
989 if (CHECK_FLAG(bgp->flags, BGP_FLAG_ASPATH_CONFED)) {
990 int aspath_hops;
991
992 aspath_hops = aspath_count_hops(newattr->aspath);
993 aspath_hops += aspath_count_confeds(newattr->aspath);
994
995 if (aspath_hops < (exist_hops + exist_confeds)) {
996 *reason = bgp_path_selection_confed_as_path;
997 if (debug)
998 zlog_debug(
999 "%s: %s wins over %s due to aspath (with confeds) hopcount %d < %d",
1000 pfx_buf, new_buf, exist_buf,
1001 aspath_hops,
1002 (exist_hops + exist_confeds));
1003 return 1;
1004 }
1005
1006 if (aspath_hops > (exist_hops + exist_confeds)) {
1007 *reason = bgp_path_selection_confed_as_path;
1008 if (debug)
1009 zlog_debug(
1010 "%s: %s loses to %s due to aspath (with confeds) hopcount %d > %d",
1011 pfx_buf, new_buf, exist_buf,
1012 aspath_hops,
1013 (exist_hops + exist_confeds));
1014 return 0;
1015 }
1016 } else {
1017 int newhops = aspath_count_hops(newattr->aspath);
1018
1019 if (newhops < exist_hops) {
1020 *reason = bgp_path_selection_as_path;
1021 if (debug)
1022 zlog_debug(
1023 "%s: %s wins over %s due to aspath hopcount %d < %d",
1024 pfx_buf, new_buf, exist_buf,
1025 newhops, exist_hops);
1026 return 1;
1027 }
1028
1029 if (newhops > exist_hops) {
1030 *reason = bgp_path_selection_as_path;
1031 if (debug)
1032 zlog_debug(
1033 "%s: %s loses to %s due to aspath hopcount %d > %d",
1034 pfx_buf, new_buf, exist_buf,
1035 newhops, exist_hops);
1036 return 0;
1037 }
1038 }
1039 }
1040
1041 /* 5. Origin check. */
1042 if (newattr->origin < existattr->origin) {
1043 *reason = bgp_path_selection_origin;
1044 if (debug)
1045 zlog_debug("%s: %s wins over %s due to ORIGIN %s < %s",
1046 pfx_buf, new_buf, exist_buf,
1047 bgp_origin_long_str[newattr->origin],
1048 bgp_origin_long_str[existattr->origin]);
1049 return 1;
1050 }
1051
1052 if (newattr->origin > existattr->origin) {
1053 *reason = bgp_path_selection_origin;
1054 if (debug)
1055 zlog_debug("%s: %s loses to %s due to ORIGIN %s > %s",
1056 pfx_buf, new_buf, exist_buf,
1057 bgp_origin_long_str[newattr->origin],
1058 bgp_origin_long_str[existattr->origin]);
1059 return 0;
1060 }
1061
1062 /* 6. MED check. */
1063 internal_as_route = (aspath_count_hops(newattr->aspath) == 0
1064 && aspath_count_hops(existattr->aspath) == 0);
1065 confed_as_route = (aspath_count_confeds(newattr->aspath) > 0
1066 && aspath_count_confeds(existattr->aspath) > 0
1067 && aspath_count_hops(newattr->aspath) == 0
1068 && aspath_count_hops(existattr->aspath) == 0);
1069
1070 if (CHECK_FLAG(bgp->flags, BGP_FLAG_ALWAYS_COMPARE_MED)
1071 || (CHECK_FLAG(bgp->flags, BGP_FLAG_MED_CONFED) && confed_as_route)
1072 || aspath_cmp_left(newattr->aspath, existattr->aspath)
1073 || aspath_cmp_left_confed(newattr->aspath, existattr->aspath)
1074 || internal_as_route) {
1075 new_med = bgp_med_value(new->attr, bgp);
1076 exist_med = bgp_med_value(exist->attr, bgp);
1077
1078 if (new_med < exist_med) {
1079 *reason = bgp_path_selection_med;
1080 if (debug)
1081 zlog_debug(
1082 "%s: %s wins over %s due to MED %d < %d",
1083 pfx_buf, new_buf, exist_buf, new_med,
1084 exist_med);
1085 return 1;
1086 }
1087
1088 if (new_med > exist_med) {
1089 *reason = bgp_path_selection_med;
1090 if (debug)
1091 zlog_debug(
1092 "%s: %s loses to %s due to MED %d > %d",
1093 pfx_buf, new_buf, exist_buf, new_med,
1094 exist_med);
1095 return 0;
1096 }
1097 }
1098
1099 /* 7. Peer type check. */
1100 new_sort = new->peer->sort;
1101 exist_sort = exist->peer->sort;
1102
1103 if (new_sort == BGP_PEER_EBGP
1104 && (exist_sort == BGP_PEER_IBGP || exist_sort == BGP_PEER_CONFED)) {
1105 *reason = bgp_path_selection_peer;
1106 if (debug)
1107 zlog_debug(
1108 "%s: %s wins over %s due to eBGP peer > iBGP peer",
1109 pfx_buf, new_buf, exist_buf);
1110 if (!CHECK_FLAG(bgp->flags, BGP_FLAG_PEERTYPE_MULTIPATH_RELAX))
1111 return 1;
1112 peer_sort_ret = 1;
1113 }
1114
1115 if (exist_sort == BGP_PEER_EBGP
1116 && (new_sort == BGP_PEER_IBGP || new_sort == BGP_PEER_CONFED)) {
1117 *reason = bgp_path_selection_peer;
1118 if (debug)
1119 zlog_debug(
1120 "%s: %s loses to %s due to iBGP peer < eBGP peer",
1121 pfx_buf, new_buf, exist_buf);
1122 if (!CHECK_FLAG(bgp->flags, BGP_FLAG_PEERTYPE_MULTIPATH_RELAX))
1123 return 0;
1124 peer_sort_ret = 0;
1125 }
1126
1127 /* 8. IGP metric check. */
1128 newm = existm = 0;
1129
1130 if (new->extra)
1131 newm = new->extra->igpmetric;
1132 if (exist->extra)
1133 existm = exist->extra->igpmetric;
1134
1135 if (newm < existm) {
1136 if (debug && peer_sort_ret < 0)
1137 zlog_debug(
1138 "%s: %s wins over %s due to IGP metric %u < %u",
1139 pfx_buf, new_buf, exist_buf, newm, existm);
1140 igp_metric_ret = 1;
1141 }
1142
1143 if (newm > existm) {
1144 if (debug && peer_sort_ret < 0)
1145 zlog_debug(
1146 "%s: %s loses to %s due to IGP metric %u > %u",
1147 pfx_buf, new_buf, exist_buf, newm, existm);
1148 igp_metric_ret = 0;
1149 }
1150
1151 /* 9. Same IGP metric. Compare the cluster list length as
1152 representative of IGP hops metric. Rewrite the metric value
1153 pair (newm, existm) with the cluster list length. Prefer the
1154 path with smaller cluster list length. */
1155 if (newm == existm) {
1156 if (peer_sort_lookup(new->peer) == BGP_PEER_IBGP &&
1157 peer_sort_lookup(exist->peer) == BGP_PEER_IBGP &&
1158 (mpath_cfg == NULL || mpath_cfg->same_clusterlen)) {
1159 newm = BGP_CLUSTER_LIST_LENGTH(new->attr);
1160 existm = BGP_CLUSTER_LIST_LENGTH(exist->attr);
1161
1162 if (newm < existm) {
1163 if (debug && peer_sort_ret < 0)
1164 zlog_debug(
1165 "%s: %s wins over %s due to CLUSTER_LIST length %u < %u",
1166 pfx_buf, new_buf, exist_buf,
1167 newm, existm);
1168 igp_metric_ret = 1;
1169 }
1170
1171 if (newm > existm) {
1172 if (debug && peer_sort_ret < 0)
1173 zlog_debug(
1174 "%s: %s loses to %s due to CLUSTER_LIST length %u > %u",
1175 pfx_buf, new_buf, exist_buf,
1176 newm, existm);
1177 igp_metric_ret = 0;
1178 }
1179 }
1180 }
1181
1182 /* 10. confed-external vs. confed-internal */
1183 if (CHECK_FLAG(bgp->config, BGP_CONFIG_CONFEDERATION)) {
1184 if (new_sort == BGP_PEER_CONFED
1185 && exist_sort == BGP_PEER_IBGP) {
1186 *reason = bgp_path_selection_confed;
1187 if (debug)
1188 zlog_debug(
1189 "%s: %s wins over %s due to confed-external peer > confed-internal peer",
1190 pfx_buf, new_buf, exist_buf);
1191 if (!CHECK_FLAG(bgp->flags,
1192 BGP_FLAG_PEERTYPE_MULTIPATH_RELAX))
1193 return 1;
1194 peer_sort_ret = 1;
1195 }
1196
1197 if (exist_sort == BGP_PEER_CONFED
1198 && new_sort == BGP_PEER_IBGP) {
1199 *reason = bgp_path_selection_confed;
1200 if (debug)
1201 zlog_debug(
1202 "%s: %s loses to %s due to confed-internal peer < confed-external peer",
1203 pfx_buf, new_buf, exist_buf);
1204 if (!CHECK_FLAG(bgp->flags,
1205 BGP_FLAG_PEERTYPE_MULTIPATH_RELAX))
1206 return 0;
1207 peer_sort_ret = 0;
1208 }
1209 }
1210
1211 /* 11. Maximum path check. */
1212 if (newm == existm) {
1213 /* If one path has a label but the other does not, do not treat
1214 * them as equals for multipath
1215 */
1216 if ((new->extra &&bgp_is_valid_label(&new->extra->label[0]))
1217 != (exist->extra
1218 && bgp_is_valid_label(&exist->extra->label[0]))) {
1219 if (debug)
1220 zlog_debug(
1221 "%s: %s and %s cannot be multipath, one has a label while the other does not",
1222 pfx_buf, new_buf, exist_buf);
1223 } else if (CHECK_FLAG(bgp->flags,
1224 BGP_FLAG_ASPATH_MULTIPATH_RELAX)) {
1225
1226 /*
1227 * For the two paths, all comparison steps till IGP
1228 * metric
1229 * have succeeded - including AS_PATH hop count. Since
1230 * 'bgp
1231 * bestpath as-path multipath-relax' knob is on, we
1232 * don't need
1233 * an exact match of AS_PATH. Thus, mark the paths are
1234 * equal.
1235 * That will trigger both these paths to get into the
1236 * multipath
1237 * array.
1238 */
1239 *paths_eq = 1;
1240
1241 if (debug)
1242 zlog_debug(
1243 "%s: %s and %s are equal via multipath-relax",
1244 pfx_buf, new_buf, exist_buf);
1245 } else if (new->peer->sort == BGP_PEER_IBGP) {
1246 if (aspath_cmp(new->attr->aspath,
1247 exist->attr->aspath)) {
1248 *paths_eq = 1;
1249
1250 if (debug)
1251 zlog_debug(
1252 "%s: %s and %s are equal via matching aspaths",
1253 pfx_buf, new_buf, exist_buf);
1254 }
1255 } else if (new->peer->as == exist->peer->as) {
1256 *paths_eq = 1;
1257
1258 if (debug)
1259 zlog_debug(
1260 "%s: %s and %s are equal via same remote-as",
1261 pfx_buf, new_buf, exist_buf);
1262 }
1263 } else {
1264 /*
1265 * TODO: If unequal cost ibgp multipath is enabled we can
1266 * mark the paths as equal here instead of returning
1267 */
1268
1269 /* Prior to the addition of BGP_FLAG_PEERTYPE_MULTIPATH_RELAX,
1270 * if either step 7 or 10 (peer type checks) yielded a winner,
1271 * that result was returned immediately. Returning from step 10
1272 * ignored the return value computed in steps 8 and 9 (IGP
1273 * metric checks). In order to preserve that behavior, if
1274 * peer_sort_ret is set, return that rather than igp_metric_ret.
1275 */
1276 ret = peer_sort_ret;
1277 if (peer_sort_ret < 0) {
1278 ret = igp_metric_ret;
1279 if (debug) {
1280 if (ret == 1)
1281 zlog_debug(
1282 "%s: %s wins over %s after IGP metric comparison",
1283 pfx_buf, new_buf, exist_buf);
1284 else
1285 zlog_debug(
1286 "%s: %s loses to %s after IGP metric comparison",
1287 pfx_buf, new_buf, exist_buf);
1288 }
1289 *reason = bgp_path_selection_igp_metric;
1290 }
1291 return ret;
1292 }
1293
1294 /*
1295 * At this point, the decision whether to set *paths_eq = 1 has been
1296 * completed. If we deferred returning because of bestpath peer-type
1297 * relax configuration, return now.
1298 */
1299 if (peer_sort_ret >= 0)
1300 return peer_sort_ret;
1301
1302 /* 12. If both paths are external, prefer the path that was received
1303 first (the oldest one). This step minimizes route-flap, since a
1304 newer path won't displace an older one, even if it was the
1305 preferred route based on the additional decision criteria below. */
1306 if (!CHECK_FLAG(bgp->flags, BGP_FLAG_COMPARE_ROUTER_ID)
1307 && new_sort == BGP_PEER_EBGP && exist_sort == BGP_PEER_EBGP) {
1308 if (CHECK_FLAG(new->flags, BGP_PATH_SELECTED)) {
1309 *reason = bgp_path_selection_older;
1310 if (debug)
1311 zlog_debug(
1312 "%s: %s wins over %s due to oldest external",
1313 pfx_buf, new_buf, exist_buf);
1314 return 1;
1315 }
1316
1317 if (CHECK_FLAG(exist->flags, BGP_PATH_SELECTED)) {
1318 *reason = bgp_path_selection_older;
1319 if (debug)
1320 zlog_debug(
1321 "%s: %s loses to %s due to oldest external",
1322 pfx_buf, new_buf, exist_buf);
1323 return 0;
1324 }
1325 }
1326
1327 /* 13. Router-ID comparison. */
1328 /* If one of the paths is "stale", the corresponding peer router-id will
1329 * be 0 and would always win over the other path. If originator id is
1330 * used for the comparison, it will decide which path is better.
1331 */
1332 if (newattr->flag & ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID))
1333 new_id.s_addr = newattr->originator_id.s_addr;
1334 else
1335 new_id.s_addr = new->peer->remote_id.s_addr;
1336 if (existattr->flag & ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID))
1337 exist_id.s_addr = existattr->originator_id.s_addr;
1338 else
1339 exist_id.s_addr = exist->peer->remote_id.s_addr;
1340
1341 if (ntohl(new_id.s_addr) < ntohl(exist_id.s_addr)) {
1342 *reason = bgp_path_selection_router_id;
1343 if (debug)
1344 zlog_debug(
1345 "%s: %s wins over %s due to Router-ID comparison",
1346 pfx_buf, new_buf, exist_buf);
1347 return 1;
1348 }
1349
1350 if (ntohl(new_id.s_addr) > ntohl(exist_id.s_addr)) {
1351 *reason = bgp_path_selection_router_id;
1352 if (debug)
1353 zlog_debug(
1354 "%s: %s loses to %s due to Router-ID comparison",
1355 pfx_buf, new_buf, exist_buf);
1356 return 0;
1357 }
1358
1359 /* 14. Cluster length comparison. */
1360 new_cluster = BGP_CLUSTER_LIST_LENGTH(new->attr);
1361 exist_cluster = BGP_CLUSTER_LIST_LENGTH(exist->attr);
1362
1363 if (new_cluster < exist_cluster) {
1364 *reason = bgp_path_selection_cluster_length;
1365 if (debug)
1366 zlog_debug(
1367 "%s: %s wins over %s due to CLUSTER_LIST length %d < %d",
1368 pfx_buf, new_buf, exist_buf, new_cluster,
1369 exist_cluster);
1370 return 1;
1371 }
1372
1373 if (new_cluster > exist_cluster) {
1374 *reason = bgp_path_selection_cluster_length;
1375 if (debug)
1376 zlog_debug(
1377 "%s: %s loses to %s due to CLUSTER_LIST length %d > %d",
1378 pfx_buf, new_buf, exist_buf, new_cluster,
1379 exist_cluster);
1380 return 0;
1381 }
1382
1383 /* 15. Neighbor address comparison. */
1384 /* Do this only if neither path is "stale" as stale paths do not have
1385 * valid peer information (as the connection may or may not be up).
1386 */
1387 if (CHECK_FLAG(exist->flags, BGP_PATH_STALE)) {
1388 *reason = bgp_path_selection_stale;
1389 if (debug)
1390 zlog_debug(
1391 "%s: %s wins over %s due to latter path being STALE",
1392 pfx_buf, new_buf, exist_buf);
1393 return 1;
1394 }
1395
1396 if (CHECK_FLAG(new->flags, BGP_PATH_STALE)) {
1397 *reason = bgp_path_selection_stale;
1398 if (debug)
1399 zlog_debug(
1400 "%s: %s loses to %s due to former path being STALE",
1401 pfx_buf, new_buf, exist_buf);
1402 return 0;
1403 }
1404
1405 /* locally configured routes to advertise do not have su_remote */
1406 if (new->peer->su_remote == NULL) {
1407 *reason = bgp_path_selection_local_configured;
1408 return 0;
1409 }
1410 if (exist->peer->su_remote == NULL) {
1411 *reason = bgp_path_selection_local_configured;
1412 return 1;
1413 }
1414
1415 ret = sockunion_cmp(new->peer->su_remote, exist->peer->su_remote);
1416
1417 if (ret == 1) {
1418 *reason = bgp_path_selection_neighbor_ip;
1419 if (debug)
1420 zlog_debug(
1421 "%s: %s loses to %s due to Neighor IP comparison",
1422 pfx_buf, new_buf, exist_buf);
1423 return 0;
1424 }
1425
1426 if (ret == -1) {
1427 *reason = bgp_path_selection_neighbor_ip;
1428 if (debug)
1429 zlog_debug(
1430 "%s: %s wins over %s due to Neighor IP comparison",
1431 pfx_buf, new_buf, exist_buf);
1432 return 1;
1433 }
1434
1435 *reason = bgp_path_selection_default;
1436 if (debug)
1437 zlog_debug("%s: %s wins over %s due to nothing left to compare",
1438 pfx_buf, new_buf, exist_buf);
1439
1440 return 1;
1441 }
1442
1443
1444 int bgp_evpn_path_info_cmp(struct bgp *bgp, struct bgp_path_info *new,
1445 struct bgp_path_info *exist, int *paths_eq)
1446 {
1447 enum bgp_path_selection_reason reason;
1448 char pfx_buf[PREFIX2STR_BUFFER];
1449
1450 return bgp_path_info_cmp(bgp, new, exist, paths_eq, NULL, 0, pfx_buf,
1451 AFI_L2VPN, SAFI_EVPN, &reason);
1452 }
1453
1454 /* Compare two bgp route entity. Return -1 if new is preferred, 1 if exist
1455 * is preferred, or 0 if they are the same (usually will only occur if
1456 * multipath is enabled
1457 * This version is compatible with */
1458 int bgp_path_info_cmp_compatible(struct bgp *bgp, struct bgp_path_info *new,
1459 struct bgp_path_info *exist, char *pfx_buf,
1460 afi_t afi, safi_t safi,
1461 enum bgp_path_selection_reason *reason)
1462 {
1463 int paths_eq;
1464 int ret;
1465 ret = bgp_path_info_cmp(bgp, new, exist, &paths_eq, NULL, 0, pfx_buf,
1466 afi, safi, reason);
1467
1468 if (paths_eq)
1469 ret = 0;
1470 else {
1471 if (ret == 1)
1472 ret = -1;
1473 else
1474 ret = 1;
1475 }
1476 return ret;
1477 }
1478
1479 static enum filter_type bgp_input_filter(struct peer *peer,
1480 const struct prefix *p,
1481 struct attr *attr, afi_t afi,
1482 safi_t safi)
1483 {
1484 struct bgp_filter *filter;
1485 enum filter_type ret = FILTER_PERMIT;
1486
1487 filter = &peer->filter[afi][safi];
1488
1489 #define FILTER_EXIST_WARN(F, f, filter) \
1490 if (BGP_DEBUG(update, UPDATE_IN) && !(F##_IN(filter))) \
1491 zlog_debug("%s: Could not find configured input %s-list %s!", \
1492 peer->host, #f, F##_IN_NAME(filter));
1493
1494 if (DISTRIBUTE_IN_NAME(filter)) {
1495 FILTER_EXIST_WARN(DISTRIBUTE, distribute, filter);
1496
1497 if (access_list_apply(DISTRIBUTE_IN(filter), p)
1498 == FILTER_DENY) {
1499 ret = FILTER_DENY;
1500 goto done;
1501 }
1502 }
1503
1504 if (PREFIX_LIST_IN_NAME(filter)) {
1505 FILTER_EXIST_WARN(PREFIX_LIST, prefix, filter);
1506
1507 if (prefix_list_apply(PREFIX_LIST_IN(filter), p)
1508 == PREFIX_DENY) {
1509 ret = FILTER_DENY;
1510 goto done;
1511 }
1512 }
1513
1514 if (FILTER_LIST_IN_NAME(filter)) {
1515 FILTER_EXIST_WARN(FILTER_LIST, as, filter);
1516
1517 if (as_list_apply(FILTER_LIST_IN(filter), attr->aspath)
1518 == AS_FILTER_DENY) {
1519 ret = FILTER_DENY;
1520 goto done;
1521 }
1522 }
1523
1524 done:
1525 if (frrtrace_enabled(frr_bgp, input_filter)) {
1526 char pfxprint[PREFIX2STR_BUFFER];
1527
1528 prefix2str(p, pfxprint, sizeof(pfxprint));
1529 frrtrace(5, frr_bgp, input_filter, peer, pfxprint, afi, safi,
1530 ret == FILTER_PERMIT ? "permit" : "deny");
1531 }
1532
1533 return ret;
1534 #undef FILTER_EXIST_WARN
1535 }
1536
1537 static enum filter_type bgp_output_filter(struct peer *peer,
1538 const struct prefix *p,
1539 struct attr *attr, afi_t afi,
1540 safi_t safi)
1541 {
1542 struct bgp_filter *filter;
1543 enum filter_type ret = FILTER_PERMIT;
1544
1545 filter = &peer->filter[afi][safi];
1546
1547 #define FILTER_EXIST_WARN(F, f, filter) \
1548 if (BGP_DEBUG(update, UPDATE_OUT) && !(F##_OUT(filter))) \
1549 zlog_debug("%s: Could not find configured output %s-list %s!", \
1550 peer->host, #f, F##_OUT_NAME(filter));
1551
1552 if (DISTRIBUTE_OUT_NAME(filter)) {
1553 FILTER_EXIST_WARN(DISTRIBUTE, distribute, filter);
1554
1555 if (access_list_apply(DISTRIBUTE_OUT(filter), p)
1556 == FILTER_DENY) {
1557 ret = FILTER_DENY;
1558 goto done;
1559 }
1560 }
1561
1562 if (PREFIX_LIST_OUT_NAME(filter)) {
1563 FILTER_EXIST_WARN(PREFIX_LIST, prefix, filter);
1564
1565 if (prefix_list_apply(PREFIX_LIST_OUT(filter), p)
1566 == PREFIX_DENY) {
1567 ret = FILTER_DENY;
1568 goto done;
1569 }
1570 }
1571
1572 if (FILTER_LIST_OUT_NAME(filter)) {
1573 FILTER_EXIST_WARN(FILTER_LIST, as, filter);
1574
1575 if (as_list_apply(FILTER_LIST_OUT(filter), attr->aspath)
1576 == AS_FILTER_DENY) {
1577 ret = FILTER_DENY;
1578 goto done;
1579 }
1580 }
1581
1582 if (frrtrace_enabled(frr_bgp, output_filter)) {
1583 char pfxprint[PREFIX2STR_BUFFER];
1584
1585 prefix2str(p, pfxprint, sizeof(pfxprint));
1586 frrtrace(5, frr_bgp, output_filter, peer, pfxprint, afi, safi,
1587 ret == FILTER_PERMIT ? "permit" : "deny");
1588 }
1589
1590 done:
1591 return ret;
1592 #undef FILTER_EXIST_WARN
1593 }
1594
1595 /* If community attribute includes no_export then return 1. */
1596 static bool bgp_community_filter(struct peer *peer, struct attr *attr)
1597 {
1598 if (bgp_attr_get_community(attr)) {
1599 /* NO_ADVERTISE check. */
1600 if (community_include(bgp_attr_get_community(attr),
1601 COMMUNITY_NO_ADVERTISE))
1602 return true;
1603
1604 /* NO_EXPORT check. */
1605 if (peer->sort == BGP_PEER_EBGP &&
1606 community_include(bgp_attr_get_community(attr),
1607 COMMUNITY_NO_EXPORT))
1608 return true;
1609
1610 /* NO_EXPORT_SUBCONFED check. */
1611 if (peer->sort == BGP_PEER_EBGP
1612 || peer->sort == BGP_PEER_CONFED)
1613 if (community_include(bgp_attr_get_community(attr),
1614 COMMUNITY_NO_EXPORT_SUBCONFED))
1615 return true;
1616 }
1617 return false;
1618 }
1619
1620 /* Route reflection loop check. */
1621 static bool bgp_cluster_filter(struct peer *peer, struct attr *attr)
1622 {
1623 struct in_addr cluster_id;
1624 struct cluster_list *cluster = bgp_attr_get_cluster(attr);
1625
1626 if (cluster) {
1627 if (peer->bgp->config & BGP_CONFIG_CLUSTER_ID)
1628 cluster_id = peer->bgp->cluster_id;
1629 else
1630 cluster_id = peer->bgp->router_id;
1631
1632 if (cluster_loop_check(cluster, cluster_id))
1633 return true;
1634 }
1635 return false;
1636 }
1637
1638 static bool bgp_otc_filter(struct peer *peer, struct attr *attr)
1639 {
1640 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_OTC)) {
1641 if (peer->local_role == ROLE_PROVIDER ||
1642 peer->local_role == ROLE_RS_SERVER)
1643 return true;
1644 if (peer->local_role == ROLE_PEER && attr->otc != peer->as)
1645 return true;
1646 return false;
1647 }
1648 if (peer->local_role == ROLE_CUSTOMER ||
1649 peer->local_role == ROLE_PEER ||
1650 peer->local_role == ROLE_RS_CLIENT) {
1651 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_OTC);
1652 attr->otc = peer->as;
1653 }
1654 return false;
1655 }
1656
1657 static bool bgp_otc_egress(struct peer *peer, struct attr *attr)
1658 {
1659 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_OTC)) {
1660 if (peer->local_role == ROLE_CUSTOMER ||
1661 peer->local_role == ROLE_RS_CLIENT ||
1662 peer->local_role == ROLE_PEER)
1663 return true;
1664 return false;
1665 }
1666 if (peer->local_role == ROLE_PROVIDER ||
1667 peer->local_role == ROLE_PEER ||
1668 peer->local_role == ROLE_RS_SERVER) {
1669 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_OTC);
1670 attr->otc = peer->bgp->as;
1671 }
1672 return false;
1673 }
1674
1675 static bool bgp_check_role_applicability(afi_t afi, safi_t safi)
1676 {
1677 return ((afi == AFI_IP || afi == AFI_IP6) && safi == SAFI_UNICAST);
1678 }
1679
1680 static int bgp_input_modifier(struct peer *peer, const struct prefix *p,
1681 struct attr *attr, afi_t afi, safi_t safi,
1682 const char *rmap_name, mpls_label_t *label,
1683 uint32_t num_labels, struct bgp_dest *dest)
1684 {
1685 struct bgp_filter *filter;
1686 struct bgp_path_info rmap_path = { 0 };
1687 struct bgp_path_info_extra extra = { 0 };
1688 route_map_result_t ret;
1689 struct route_map *rmap = NULL;
1690
1691 filter = &peer->filter[afi][safi];
1692
1693 /* Apply default weight value. */
1694 if (peer->weight[afi][safi])
1695 attr->weight = peer->weight[afi][safi];
1696
1697 if (rmap_name) {
1698 rmap = route_map_lookup_by_name(rmap_name);
1699
1700 if (rmap == NULL)
1701 return RMAP_DENY;
1702 } else {
1703 if (ROUTE_MAP_IN_NAME(filter)) {
1704 rmap = ROUTE_MAP_IN(filter);
1705
1706 if (rmap == NULL)
1707 return RMAP_DENY;
1708 }
1709 }
1710
1711 /* Route map apply. */
1712 if (rmap) {
1713 memset(&rmap_path, 0, sizeof(rmap_path));
1714 /* Duplicate current value to new structure for modification. */
1715 rmap_path.peer = peer;
1716 rmap_path.attr = attr;
1717 rmap_path.extra = &extra;
1718 rmap_path.net = dest;
1719
1720 extra.num_labels = num_labels;
1721 if (label && num_labels && num_labels <= BGP_MAX_LABELS)
1722 memcpy(extra.label, label,
1723 num_labels * sizeof(mpls_label_t));
1724
1725 SET_FLAG(peer->rmap_type, PEER_RMAP_TYPE_IN);
1726
1727 /* Apply BGP route map to the attribute. */
1728 ret = route_map_apply(rmap, p, &rmap_path);
1729
1730 peer->rmap_type = 0;
1731
1732 if (ret == RMAP_DENYMATCH)
1733 return RMAP_DENY;
1734 }
1735 return RMAP_PERMIT;
1736 }
1737
1738 static int bgp_output_modifier(struct peer *peer, const struct prefix *p,
1739 struct attr *attr, afi_t afi, safi_t safi,
1740 const char *rmap_name)
1741 {
1742 struct bgp_path_info rmap_path;
1743 route_map_result_t ret;
1744 struct route_map *rmap = NULL;
1745 uint8_t rmap_type;
1746
1747 /*
1748 * So if we get to this point and have no rmap_name
1749 * we want to just show the output as it currently
1750 * exists.
1751 */
1752 if (!rmap_name)
1753 return RMAP_PERMIT;
1754
1755 /* Apply default weight value. */
1756 if (peer->weight[afi][safi])
1757 attr->weight = peer->weight[afi][safi];
1758
1759 rmap = route_map_lookup_by_name(rmap_name);
1760
1761 /*
1762 * If we have a route map name and we do not find
1763 * the routemap that means we have an implicit
1764 * deny.
1765 */
1766 if (rmap == NULL)
1767 return RMAP_DENY;
1768
1769 memset(&rmap_path, 0, sizeof(rmap_path));
1770 /* Route map apply. */
1771 /* Duplicate current value to new structure for modification. */
1772 rmap_path.peer = peer;
1773 rmap_path.attr = attr;
1774
1775 rmap_type = peer->rmap_type;
1776 SET_FLAG(peer->rmap_type, PEER_RMAP_TYPE_OUT);
1777
1778 /* Apply BGP route map to the attribute. */
1779 ret = route_map_apply(rmap, p, &rmap_path);
1780
1781 peer->rmap_type = rmap_type;
1782
1783 if (ret == RMAP_DENYMATCH)
1784 /*
1785 * caller has multiple error paths with bgp_attr_flush()
1786 */
1787 return RMAP_DENY;
1788
1789 return RMAP_PERMIT;
1790 }
1791
1792 /* If this is an EBGP peer with remove-private-AS */
1793 static void bgp_peer_remove_private_as(struct bgp *bgp, afi_t afi, safi_t safi,
1794 struct peer *peer, struct attr *attr)
1795 {
1796 if (peer->sort == BGP_PEER_EBGP
1797 && (peer_af_flag_check(peer, afi, safi,
1798 PEER_FLAG_REMOVE_PRIVATE_AS_ALL_REPLACE)
1799 || peer_af_flag_check(peer, afi, safi,
1800 PEER_FLAG_REMOVE_PRIVATE_AS_REPLACE)
1801 || peer_af_flag_check(peer, afi, safi,
1802 PEER_FLAG_REMOVE_PRIVATE_AS_ALL)
1803 || peer_af_flag_check(peer, afi, safi,
1804 PEER_FLAG_REMOVE_PRIVATE_AS))) {
1805 // Take action on the entire aspath
1806 if (peer_af_flag_check(peer, afi, safi,
1807 PEER_FLAG_REMOVE_PRIVATE_AS_ALL_REPLACE)
1808 || peer_af_flag_check(peer, afi, safi,
1809 PEER_FLAG_REMOVE_PRIVATE_AS_ALL)) {
1810 if (peer_af_flag_check(
1811 peer, afi, safi,
1812 PEER_FLAG_REMOVE_PRIVATE_AS_ALL_REPLACE))
1813 attr->aspath = aspath_replace_private_asns(
1814 attr->aspath, bgp->as, peer->as);
1815
1816 /*
1817 * Even if the aspath consists of just private ASNs we
1818 * need to walk the AS-Path to maintain all instances
1819 * of the peer's ASN to break possible loops.
1820 */
1821 else
1822 attr->aspath = aspath_remove_private_asns(
1823 attr->aspath, peer->as);
1824 }
1825
1826 // 'all' was not specified so the entire aspath must be private
1827 // ASNs
1828 // for us to do anything
1829 else if (aspath_private_as_check(attr->aspath)) {
1830 if (peer_af_flag_check(
1831 peer, afi, safi,
1832 PEER_FLAG_REMOVE_PRIVATE_AS_REPLACE))
1833 attr->aspath = aspath_replace_private_asns(
1834 attr->aspath, bgp->as, peer->as);
1835 else
1836 /*
1837 * Walk the aspath to retain any instances of
1838 * the peer_asn
1839 */
1840 attr->aspath = aspath_remove_private_asns(
1841 attr->aspath, peer->as);
1842 }
1843 }
1844 }
1845
1846 /* If this is an EBGP peer with as-override */
1847 static void bgp_peer_as_override(struct bgp *bgp, afi_t afi, safi_t safi,
1848 struct peer *peer, struct attr *attr)
1849 {
1850 struct aspath *aspath;
1851
1852 if (peer->sort == BGP_PEER_EBGP &&
1853 peer_af_flag_check(peer, afi, safi, PEER_FLAG_AS_OVERRIDE)) {
1854 if (attr->aspath->refcnt)
1855 aspath = aspath_dup(attr->aspath);
1856 else
1857 aspath = attr->aspath;
1858
1859 attr->aspath = aspath_intern(
1860 aspath_replace_specific_asn(aspath, peer->as, bgp->as));
1861
1862 aspath_free(aspath);
1863 }
1864 }
1865
1866 void bgp_attr_add_llgr_community(struct attr *attr)
1867 {
1868 struct community *old;
1869 struct community *new;
1870 struct community *merge;
1871 struct community *llgr;
1872
1873 old = bgp_attr_get_community(attr);
1874 llgr = community_str2com("llgr-stale");
1875
1876 assert(llgr);
1877
1878 if (old) {
1879 merge = community_merge(community_dup(old), llgr);
1880
1881 if (old->refcnt == 0)
1882 community_free(&old);
1883
1884 new = community_uniq_sort(merge);
1885 community_free(&merge);
1886 } else {
1887 new = community_dup(llgr);
1888 }
1889
1890 community_free(&llgr);
1891
1892 bgp_attr_set_community(attr, new);
1893 }
1894
1895 void bgp_attr_add_gshut_community(struct attr *attr)
1896 {
1897 struct community *old;
1898 struct community *new;
1899 struct community *merge;
1900 struct community *gshut;
1901
1902 old = bgp_attr_get_community(attr);
1903 gshut = community_str2com("graceful-shutdown");
1904
1905 assert(gshut);
1906
1907 if (old) {
1908 merge = community_merge(community_dup(old), gshut);
1909
1910 if (old->refcnt == 0)
1911 community_free(&old);
1912
1913 new = community_uniq_sort(merge);
1914 community_free(&merge);
1915 } else {
1916 new = community_dup(gshut);
1917 }
1918
1919 community_free(&gshut);
1920 bgp_attr_set_community(attr, new);
1921
1922 /* When we add the graceful-shutdown community we must also
1923 * lower the local-preference */
1924 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF);
1925 attr->local_pref = BGP_GSHUT_LOCAL_PREF;
1926 }
1927
1928
1929 /* Notify BGP Conditional advertisement scanner process. */
1930 void bgp_notify_conditional_adv_scanner(struct update_subgroup *subgrp)
1931 {
1932 struct peer *peer = SUBGRP_PEER(subgrp);
1933 afi_t afi = SUBGRP_AFI(subgrp);
1934 safi_t safi = SUBGRP_SAFI(subgrp);
1935 struct bgp_filter *filter = &peer->filter[afi][safi];
1936
1937 if (!ADVERTISE_MAP_NAME(filter))
1938 return;
1939
1940 if (!CHECK_FLAG(peer->flags, PEER_FLAG_CONFIG_NODE))
1941 return;
1942
1943 peer->advmap_table_change = true;
1944 }
1945
1946
1947 void subgroup_announce_reset_nhop(uint8_t family, struct attr *attr)
1948 {
1949 if (family == AF_INET) {
1950 attr->nexthop.s_addr = INADDR_ANY;
1951 attr->mp_nexthop_global_in.s_addr = INADDR_ANY;
1952 }
1953 if (family == AF_INET6)
1954 memset(&attr->mp_nexthop_global, 0, IPV6_MAX_BYTELEN);
1955 if (family == AF_EVPN)
1956 memset(&attr->mp_nexthop_global_in, 0, BGP_ATTR_NHLEN_IPV4);
1957 }
1958
1959 bool subgroup_announce_check(struct bgp_dest *dest, struct bgp_path_info *pi,
1960 struct update_subgroup *subgrp,
1961 const struct prefix *p, struct attr *attr,
1962 struct attr *post_attr)
1963 {
1964 struct bgp_filter *filter;
1965 struct peer *from;
1966 struct peer *peer;
1967 struct peer *onlypeer;
1968 struct bgp *bgp;
1969 struct attr *piattr;
1970 route_map_result_t ret;
1971 int transparent;
1972 int reflect;
1973 afi_t afi;
1974 safi_t safi;
1975 int samepeer_safe = 0; /* for synthetic mplsvpns routes */
1976 bool nh_reset = false;
1977 uint64_t cum_bw;
1978
1979 if (DISABLE_BGP_ANNOUNCE)
1980 return false;
1981
1982 afi = SUBGRP_AFI(subgrp);
1983 safi = SUBGRP_SAFI(subgrp);
1984 peer = SUBGRP_PEER(subgrp);
1985 onlypeer = NULL;
1986 if (CHECK_FLAG(peer->flags, PEER_FLAG_LONESOUL))
1987 onlypeer = SUBGRP_PFIRST(subgrp)->peer;
1988
1989 from = pi->peer;
1990 filter = &peer->filter[afi][safi];
1991 bgp = SUBGRP_INST(subgrp);
1992 piattr = bgp_path_info_mpath_count(pi) ? bgp_path_info_mpath_attr(pi)
1993 : pi->attr;
1994
1995 if (CHECK_FLAG(peer->af_flags[afi][safi], PEER_FLAG_MAX_PREFIX_OUT) &&
1996 peer->pmax_out[afi][safi] != 0 &&
1997 subgrp->pscount >= peer->pmax_out[afi][safi]) {
1998 if (BGP_DEBUG(update, UPDATE_OUT) ||
1999 BGP_DEBUG(update, UPDATE_PREFIX)) {
2000 zlog_debug("%s reached maximum prefix to be send (%u)",
2001 peer->host, peer->pmax_out[afi][safi]);
2002 }
2003 return false;
2004 }
2005
2006 #ifdef ENABLE_BGP_VNC
2007 if (((afi == AFI_IP) || (afi == AFI_IP6)) && (safi == SAFI_MPLS_VPN)
2008 && ((pi->type == ZEBRA_ROUTE_BGP_DIRECT)
2009 || (pi->type == ZEBRA_ROUTE_BGP_DIRECT_EXT))) {
2010
2011 /*
2012 * direct and direct_ext type routes originate internally even
2013 * though they can have peer pointers that reference other
2014 * systems
2015 */
2016 zlog_debug("%s: pfx %pFX bgp_direct->vpn route peer safe",
2017 __func__, p);
2018 samepeer_safe = 1;
2019 }
2020 #endif
2021
2022 if (((afi == AFI_IP) || (afi == AFI_IP6))
2023 && ((safi == SAFI_MPLS_VPN) || (safi == SAFI_UNICAST))
2024 && (pi->type == ZEBRA_ROUTE_BGP)
2025 && (pi->sub_type == BGP_ROUTE_IMPORTED)) {
2026
2027 /* Applies to routes leaked vpn->vrf and vrf->vpn */
2028
2029 samepeer_safe = 1;
2030 }
2031
2032 /* With addpath we may be asked to TX all kinds of paths so make sure
2033 * pi is valid */
2034 if (!CHECK_FLAG(pi->flags, BGP_PATH_VALID)
2035 || CHECK_FLAG(pi->flags, BGP_PATH_HISTORY)
2036 || CHECK_FLAG(pi->flags, BGP_PATH_REMOVED)) {
2037 return false;
2038 }
2039
2040 /* If this is not the bestpath then check to see if there is an enabled
2041 * addpath
2042 * feature that requires us to advertise it */
2043 if (!CHECK_FLAG(pi->flags, BGP_PATH_SELECTED))
2044 if (!bgp_addpath_capable(pi, peer, afi, safi))
2045 return false;
2046
2047 /* Aggregate-address suppress check. */
2048 if (bgp_path_suppressed(pi) && !UNSUPPRESS_MAP_NAME(filter))
2049 return false;
2050
2051 /*
2052 * If we are doing VRF 2 VRF leaking via the import
2053 * statement, we want to prevent the route going
2054 * off box as that the RT and RD created are localy
2055 * significant and globaly useless.
2056 */
2057 if (safi == SAFI_MPLS_VPN && pi->extra && pi->extra->num_labels
2058 && pi->extra->label[0] == BGP_PREVENT_VRF_2_VRF_LEAK)
2059 return false;
2060
2061 /* If it's labeled safi, make sure the route has a valid label. */
2062 if (safi == SAFI_LABELED_UNICAST) {
2063 mpls_label_t label = bgp_adv_label(dest, pi, peer, afi, safi);
2064 if (!bgp_is_valid_label(&label)) {
2065 if (bgp_debug_update(NULL, p, subgrp->update_group, 0))
2066 zlog_debug("u%" PRIu64 ":s%" PRIu64
2067 " %pFX is filtered - no label (%p)",
2068 subgrp->update_group->id, subgrp->id,
2069 p, &label);
2070 return false;
2071 }
2072 }
2073
2074 /* Do not send back route to sender. */
2075 if (onlypeer && from == onlypeer) {
2076 return false;
2077 }
2078
2079 /* Do not send the default route in the BGP table if the neighbor is
2080 * configured for default-originate */
2081 if (CHECK_FLAG(peer->af_flags[afi][safi],
2082 PEER_FLAG_DEFAULT_ORIGINATE)) {
2083 if (p->family == AF_INET && p->u.prefix4.s_addr == INADDR_ANY)
2084 return false;
2085 else if (p->family == AF_INET6 && p->prefixlen == 0)
2086 return false;
2087 }
2088
2089 /* Transparency check. */
2090 if (CHECK_FLAG(peer->af_flags[afi][safi], PEER_FLAG_RSERVER_CLIENT)
2091 && CHECK_FLAG(from->af_flags[afi][safi], PEER_FLAG_RSERVER_CLIENT))
2092 transparent = 1;
2093 else
2094 transparent = 0;
2095
2096 /* If community is not disabled check the no-export and local. */
2097 if (!transparent && bgp_community_filter(peer, piattr)) {
2098 if (bgp_debug_update(NULL, p, subgrp->update_group, 0))
2099 zlog_debug("%s: community filter check fail for %pFX",
2100 __func__, p);
2101 return false;
2102 }
2103
2104 /* If the attribute has originator-id and it is same as remote
2105 peer's id. */
2106 if (onlypeer && piattr->flag & ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID)
2107 && (IPV4_ADDR_SAME(&onlypeer->remote_id, &piattr->originator_id))) {
2108 if (bgp_debug_update(NULL, p, subgrp->update_group, 0))
2109 zlog_debug(
2110 "%pBP [Update:SEND] %pFX originator-id is same as remote router-id",
2111 onlypeer, p);
2112 return false;
2113 }
2114
2115 /* ORF prefix-list filter check */
2116 if (CHECK_FLAG(peer->af_cap[afi][safi], PEER_CAP_ORF_PREFIX_RM_ADV)
2117 && (CHECK_FLAG(peer->af_cap[afi][safi], PEER_CAP_ORF_PREFIX_SM_RCV)
2118 || CHECK_FLAG(peer->af_cap[afi][safi],
2119 PEER_CAP_ORF_PREFIX_SM_OLD_RCV)))
2120 if (peer->orf_plist[afi][safi]) {
2121 if (prefix_list_apply(peer->orf_plist[afi][safi], p)
2122 == PREFIX_DENY) {
2123 if (bgp_debug_update(NULL, p,
2124 subgrp->update_group, 0))
2125 zlog_debug(
2126 "%pBP [Update:SEND] %pFX is filtered via ORF",
2127 peer, p);
2128 return false;
2129 }
2130 }
2131
2132 /* Output filter check. */
2133 if (bgp_output_filter(peer, p, piattr, afi, safi) == FILTER_DENY) {
2134 if (bgp_debug_update(NULL, p, subgrp->update_group, 0))
2135 zlog_debug("%pBP [Update:SEND] %pFX is filtered", peer,
2136 p);
2137 return false;
2138 }
2139
2140 /* AS path loop check. */
2141 if (peer->as_path_loop_detection &&
2142 aspath_loop_check(piattr->aspath, peer->as)) {
2143 if (bgp_debug_update(NULL, p, subgrp->update_group, 0))
2144 zlog_debug(
2145 "%pBP [Update:SEND] suppress announcement to peer AS %u that is part of AS path.",
2146 peer, peer->as);
2147 return false;
2148 }
2149
2150 /* If we're a CONFED we need to loop check the CONFED ID too */
2151 if (CHECK_FLAG(bgp->config, BGP_CONFIG_CONFEDERATION)) {
2152 if (aspath_loop_check_confed(piattr->aspath, bgp->confed_id)) {
2153 if (bgp_debug_update(NULL, p, subgrp->update_group, 0))
2154 zlog_debug(
2155 "%pBP [Update:SEND] suppress announcement to peer AS %u is AS path.",
2156 peer, bgp->confed_id);
2157 return false;
2158 }
2159 }
2160
2161 /* Route-Reflect check. */
2162 if (from->sort == BGP_PEER_IBGP && peer->sort == BGP_PEER_IBGP)
2163 reflect = 1;
2164 else
2165 reflect = 0;
2166
2167 /* IBGP reflection check. */
2168 if (reflect && !samepeer_safe) {
2169 /* A route from a Client peer. */
2170 if (CHECK_FLAG(from->af_flags[afi][safi],
2171 PEER_FLAG_REFLECTOR_CLIENT)) {
2172 /* Reflect to all the Non-Client peers and also to the
2173 Client peers other than the originator. Originator
2174 check
2175 is already done. So there is noting to do. */
2176 /* no bgp client-to-client reflection check. */
2177 if (CHECK_FLAG(bgp->flags,
2178 BGP_FLAG_NO_CLIENT_TO_CLIENT))
2179 if (CHECK_FLAG(peer->af_flags[afi][safi],
2180 PEER_FLAG_REFLECTOR_CLIENT))
2181 return false;
2182 } else {
2183 /* A route from a Non-client peer. Reflect to all other
2184 clients. */
2185 if (!CHECK_FLAG(peer->af_flags[afi][safi],
2186 PEER_FLAG_REFLECTOR_CLIENT))
2187 return false;
2188 }
2189 }
2190
2191 /* For modify attribute, copy it to temporary structure.
2192 * post_attr comes from BGP conditional advertisements, where
2193 * attributes are already processed by advertise-map route-map,
2194 * and this needs to be saved instead of overwriting from the
2195 * path attributes.
2196 */
2197 if (post_attr)
2198 *attr = *post_attr;
2199 else
2200 *attr = *piattr;
2201
2202 /* If local-preference is not set. */
2203 if ((peer->sort == BGP_PEER_IBGP || peer->sort == BGP_PEER_CONFED)
2204 && (!(attr->flag & ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF)))) {
2205 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF);
2206 attr->local_pref = bgp->default_local_pref;
2207 }
2208
2209 /* If originator-id is not set and the route is to be reflected,
2210 set the originator id */
2211 if (reflect
2212 && (!(attr->flag & ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID)))) {
2213 IPV4_ADDR_COPY(&(attr->originator_id), &(from->remote_id));
2214 SET_FLAG(attr->flag, BGP_ATTR_ORIGINATOR_ID);
2215 }
2216
2217 /* Remove MED if its an EBGP peer - will get overwritten by route-maps
2218 */
2219 if (peer->sort == BGP_PEER_EBGP
2220 && attr->flag & ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC)) {
2221 if (from != bgp->peer_self && !transparent
2222 && !CHECK_FLAG(peer->af_flags[afi][safi],
2223 PEER_FLAG_MED_UNCHANGED))
2224 attr->flag &=
2225 ~(ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC));
2226 }
2227
2228 /* Since the nexthop attribute can vary per peer, it is not explicitly
2229 * set
2230 * in announce check, only certain flags and length (or number of
2231 * nexthops
2232 * -- for IPv6/MP_REACH) are set here in order to guide the update
2233 * formation
2234 * code in setting the nexthop(s) on a per peer basis in
2235 * reformat_peer().
2236 * Typically, the source nexthop in the attribute is preserved but in
2237 * the
2238 * scenarios where we know it will always be overwritten, we reset the
2239 * nexthop to "0" in an attempt to achieve better Update packing. An
2240 * example of this is when a prefix from each of 2 IBGP peers needs to
2241 * be
2242 * announced to an EBGP peer (and they have the same attributes barring
2243 * their nexthop).
2244 */
2245 if (reflect)
2246 SET_FLAG(attr->rmap_change_flags, BATTR_REFLECTED);
2247
2248 #define NEXTHOP_IS_V6 \
2249 ((safi != SAFI_ENCAP && safi != SAFI_MPLS_VPN \
2250 && (p->family == AF_INET6 || peer_cap_enhe(peer, afi, safi))) \
2251 || ((safi == SAFI_ENCAP || safi == SAFI_MPLS_VPN) \
2252 && attr->mp_nexthop_len >= IPV6_MAX_BYTELEN))
2253
2254 /* IPv6/MP starts with 1 nexthop. The link-local address is passed only
2255 * if
2256 * the peer (group) is configured to receive link-local nexthop
2257 * unchanged
2258 * and it is available in the prefix OR we're not reflecting the route,
2259 * link-local nexthop address is valid and
2260 * the peer (group) to whom we're going to announce is on a shared
2261 * network
2262 * and this is either a self-originated route or the peer is EBGP.
2263 * By checking if nexthop LL address is valid we are sure that
2264 * we do not announce LL address as `::`.
2265 */
2266 if (NEXTHOP_IS_V6) {
2267 attr->mp_nexthop_len = BGP_ATTR_NHLEN_IPV6_GLOBAL;
2268 if ((CHECK_FLAG(peer->af_flags[afi][safi],
2269 PEER_FLAG_NEXTHOP_LOCAL_UNCHANGED)
2270 && IN6_IS_ADDR_LINKLOCAL(&attr->mp_nexthop_local))
2271 || (!reflect && !transparent
2272 && IN6_IS_ADDR_LINKLOCAL(&peer->nexthop.v6_local)
2273 && peer->shared_network
2274 && (from == bgp->peer_self
2275 || peer->sort == BGP_PEER_EBGP))) {
2276 if (safi == SAFI_MPLS_VPN)
2277 attr->mp_nexthop_len =
2278 BGP_ATTR_NHLEN_VPNV6_GLOBAL_AND_LL;
2279 else
2280 attr->mp_nexthop_len =
2281 BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL;
2282 }
2283
2284 /* Clear off link-local nexthop in source, whenever it is not
2285 * needed to
2286 * ensure more prefixes share the same attribute for
2287 * announcement.
2288 */
2289 if (!(CHECK_FLAG(peer->af_flags[afi][safi],
2290 PEER_FLAG_NEXTHOP_LOCAL_UNCHANGED)))
2291 memset(&attr->mp_nexthop_local, 0, IPV6_MAX_BYTELEN);
2292 }
2293
2294 if (bgp_check_role_applicability(afi, safi) &&
2295 bgp_otc_egress(peer, attr))
2296 return false;
2297
2298 bgp_peer_remove_private_as(bgp, afi, safi, peer, attr);
2299 bgp_peer_as_override(bgp, afi, safi, peer, attr);
2300
2301 if (filter->advmap.update_type == UPDATE_TYPE_WITHDRAW &&
2302 filter->advmap.aname &&
2303 route_map_lookup_by_name(filter->advmap.aname)) {
2304 struct bgp_path_info rmap_path = {0};
2305 struct bgp_path_info_extra dummy_rmap_path_extra = {0};
2306 struct attr dummy_attr = *attr;
2307
2308 /* Fill temp path_info */
2309 prep_for_rmap_apply(&rmap_path, &dummy_rmap_path_extra, dest,
2310 pi, peer, &dummy_attr);
2311
2312 struct route_map *amap =
2313 route_map_lookup_by_name(filter->advmap.aname);
2314
2315 ret = route_map_apply(amap, p, &rmap_path);
2316
2317 bgp_attr_flush(&dummy_attr);
2318
2319 /*
2320 * The conditional advertisement mode is Withdraw and this
2321 * prefix is a conditional prefix. Don't advertise it
2322 */
2323 if (ret == RMAP_PERMITMATCH)
2324 return false;
2325 }
2326
2327 /* Route map & unsuppress-map apply. */
2328 if (!post_attr &&
2329 (ROUTE_MAP_OUT_NAME(filter) || bgp_path_suppressed(pi))) {
2330 struct bgp_path_info rmap_path = {0};
2331 struct bgp_path_info_extra dummy_rmap_path_extra = {0};
2332 struct attr dummy_attr = {0};
2333
2334 /* Fill temp path_info */
2335 prep_for_rmap_apply(&rmap_path, &dummy_rmap_path_extra, dest,
2336 pi, peer, attr);
2337
2338 /* don't confuse inbound and outbound setting */
2339 RESET_FLAG(attr->rmap_change_flags);
2340
2341 /*
2342 * The route reflector is not allowed to modify the attributes
2343 * of the reflected IBGP routes unless explicitly allowed.
2344 */
2345 if ((from->sort == BGP_PEER_IBGP && peer->sort == BGP_PEER_IBGP)
2346 && !CHECK_FLAG(bgp->flags,
2347 BGP_FLAG_RR_ALLOW_OUTBOUND_POLICY)) {
2348 dummy_attr = *attr;
2349 rmap_path.attr = &dummy_attr;
2350 }
2351
2352 SET_FLAG(peer->rmap_type, PEER_RMAP_TYPE_OUT);
2353
2354 if (bgp_path_suppressed(pi))
2355 ret = route_map_apply(UNSUPPRESS_MAP(filter), p,
2356 &rmap_path);
2357 else
2358 ret = route_map_apply(ROUTE_MAP_OUT(filter), p,
2359 &rmap_path);
2360
2361 bgp_attr_flush(&dummy_attr);
2362 peer->rmap_type = 0;
2363
2364 if (ret == RMAP_DENYMATCH) {
2365 if (bgp_debug_update(NULL, p, subgrp->update_group, 0))
2366 zlog_debug(
2367 "%pBP [Update:SEND] %pFX is filtered by route-map '%s'",
2368 peer, p, ROUTE_MAP_OUT_NAME(filter));
2369 bgp_attr_flush(rmap_path.attr);
2370 return false;
2371 }
2372 }
2373
2374 /* RFC 8212 to prevent route leaks.
2375 * This specification intends to improve this situation by requiring the
2376 * explicit configuration of both BGP Import and Export Policies for any
2377 * External BGP (EBGP) session such as customers, peers, or
2378 * confederation boundaries for all enabled address families. Through
2379 * codification of the aforementioned requirement, operators will
2380 * benefit from consistent behavior across different BGP
2381 * implementations.
2382 */
2383 if (CHECK_FLAG(bgp->flags, BGP_FLAG_EBGP_REQUIRES_POLICY))
2384 if (!bgp_outbound_policy_exists(peer, filter)) {
2385 if (monotime_since(&bgp->ebgprequirespolicywarning,
2386 NULL) > FIFTEENMINUTE2USEC ||
2387 bgp->ebgprequirespolicywarning.tv_sec == 0) {
2388 zlog_warn(
2389 "EBGP inbound/outbound policy not properly setup, please configure in order for your peering to work correctly");
2390 monotime(&bgp->ebgprequirespolicywarning);
2391 }
2392 return false;
2393 }
2394
2395 /* draft-ietf-idr-deprecate-as-set-confed-set
2396 * Filter routes having AS_SET or AS_CONFED_SET in the path.
2397 * Eventually, This document (if approved) updates RFC 4271
2398 * and RFC 5065 by eliminating AS_SET and AS_CONFED_SET types,
2399 * and obsoletes RFC 6472.
2400 */
2401 if (peer->bgp->reject_as_sets)
2402 if (aspath_check_as_sets(attr->aspath))
2403 return false;
2404
2405 /* If neighbor soo is configured, then check if the route has
2406 * SoO extended community and validate against the configured
2407 * one. If they match, do not announce, to prevent routing
2408 * loops.
2409 */
2410 if ((attr->flag & ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES)) &&
2411 peer->soo[afi][safi]) {
2412 struct ecommunity *ecomm_soo = peer->soo[afi][safi];
2413 struct ecommunity *ecomm = bgp_attr_get_ecommunity(attr);
2414
2415 if ((ecommunity_lookup(ecomm, ECOMMUNITY_ENCODE_AS,
2416 ECOMMUNITY_SITE_ORIGIN) ||
2417 ecommunity_lookup(ecomm, ECOMMUNITY_ENCODE_AS4,
2418 ECOMMUNITY_SITE_ORIGIN) ||
2419 ecommunity_lookup(ecomm, ECOMMUNITY_ENCODE_IP,
2420 ECOMMUNITY_SITE_ORIGIN)) &&
2421 ecommunity_include(ecomm, ecomm_soo)) {
2422 if (bgp_debug_update(NULL, p, subgrp->update_group, 0))
2423 zlog_debug(
2424 "%pBP [Update:SEND] %pFX is filtered by SoO extcommunity '%s'",
2425 peer, p, ecommunity_str(ecomm_soo));
2426 return false;
2427 }
2428 }
2429
2430 /* Codification of AS 0 Processing */
2431 if (aspath_check_as_zero(attr->aspath))
2432 return false;
2433
2434 if (bgp_in_graceful_shutdown(bgp)) {
2435 if (peer->sort == BGP_PEER_IBGP
2436 || peer->sort == BGP_PEER_CONFED) {
2437 attr->flag |= ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF);
2438 attr->local_pref = BGP_GSHUT_LOCAL_PREF;
2439 } else {
2440 bgp_attr_add_gshut_community(attr);
2441 }
2442 }
2443
2444 /* A BGP speaker that has advertised the "Long-lived Graceful Restart
2445 * Capability" to a neighbor MUST perform the following upon receiving
2446 * a route from that neighbor with the "LLGR_STALE" community, or upon
2447 * attaching the "LLGR_STALE" community itself per Section 4.2:
2448 *
2449 * The route SHOULD NOT be advertised to any neighbor from which the
2450 * Long-lived Graceful Restart Capability has not been received.
2451 */
2452 if (bgp_attr_get_community(attr) &&
2453 community_include(bgp_attr_get_community(attr),
2454 COMMUNITY_LLGR_STALE) &&
2455 !CHECK_FLAG(peer->cap, PEER_CAP_LLGR_RCV) &&
2456 !CHECK_FLAG(peer->cap, PEER_CAP_LLGR_ADV))
2457 return false;
2458
2459 /* After route-map has been applied, we check to see if the nexthop to
2460 * be carried in the attribute (that is used for the announcement) can
2461 * be cleared off or not. We do this in all cases where we would be
2462 * setting the nexthop to "ourselves". For IPv6, we only need to
2463 * consider
2464 * the global nexthop here; the link-local nexthop would have been
2465 * cleared
2466 * already, and if not, it is required by the update formation code.
2467 * Also see earlier comments in this function.
2468 */
2469 /*
2470 * If route-map has performed some operation on the nexthop or the peer
2471 * configuration says to pass it unchanged, we cannot reset the nexthop
2472 * here, so only attempt to do it if these aren't true. Note that the
2473 * route-map handler itself might have cleared the nexthop, if for
2474 * example,
2475 * it is configured as 'peer-address'.
2476 */
2477 if (!bgp_rmap_nhop_changed(attr->rmap_change_flags,
2478 piattr->rmap_change_flags)
2479 && !transparent
2480 && !CHECK_FLAG(peer->af_flags[afi][safi],
2481 PEER_FLAG_NEXTHOP_UNCHANGED)) {
2482 /* We can reset the nexthop, if setting (or forcing) it to
2483 * 'self' */
2484 if (CHECK_FLAG(peer->af_flags[afi][safi],
2485 PEER_FLAG_NEXTHOP_SELF)
2486 || CHECK_FLAG(peer->af_flags[afi][safi],
2487 PEER_FLAG_FORCE_NEXTHOP_SELF)) {
2488 if (!reflect
2489 || CHECK_FLAG(peer->af_flags[afi][safi],
2490 PEER_FLAG_FORCE_NEXTHOP_SELF)) {
2491 subgroup_announce_reset_nhop(
2492 (peer_cap_enhe(peer, afi, safi)
2493 ? AF_INET6
2494 : p->family),
2495 attr);
2496 nh_reset = true;
2497 }
2498 } else if (peer->sort == BGP_PEER_EBGP) {
2499 /* Can also reset the nexthop if announcing to EBGP, but
2500 * only if
2501 * no peer in the subgroup is on a shared subnet.
2502 * Note: 3rd party nexthop currently implemented for
2503 * IPv4 only.
2504 */
2505 if ((p->family == AF_INET) &&
2506 (!bgp_subgrp_multiaccess_check_v4(
2507 piattr->nexthop,
2508 subgrp, from))) {
2509 subgroup_announce_reset_nhop(
2510 (peer_cap_enhe(peer, afi, safi)
2511 ? AF_INET6
2512 : p->family),
2513 attr);
2514 nh_reset = true;
2515 }
2516
2517 if ((p->family == AF_INET6) &&
2518 (!bgp_subgrp_multiaccess_check_v6(
2519 piattr->mp_nexthop_global,
2520 subgrp, from))) {
2521 subgroup_announce_reset_nhop(
2522 (peer_cap_enhe(peer, afi, safi)
2523 ? AF_INET6
2524 : p->family),
2525 attr);
2526 nh_reset = true;
2527 }
2528
2529
2530
2531 } else if (CHECK_FLAG(pi->flags, BGP_PATH_ANNC_NH_SELF)) {
2532 /*
2533 * This flag is used for leaked vpn-vrf routes
2534 */
2535 int family = p->family;
2536
2537 if (peer_cap_enhe(peer, afi, safi))
2538 family = AF_INET6;
2539
2540 if (bgp_debug_update(NULL, p, subgrp->update_group, 0))
2541 zlog_debug(
2542 "%s: %pFX BGP_PATH_ANNC_NH_SELF, family=%s",
2543 __func__, p, family2str(family));
2544 subgroup_announce_reset_nhop(family, attr);
2545 nh_reset = true;
2546 }
2547 }
2548
2549 /* If IPv6/MP and nexthop does not have any override and happens
2550 * to
2551 * be a link-local address, reset it so that we don't pass along
2552 * the
2553 * source's link-local IPv6 address to recipients who may not be
2554 * on
2555 * the same interface.
2556 */
2557 if (p->family == AF_INET6 || peer_cap_enhe(peer, afi, safi)) {
2558 if (IN6_IS_ADDR_LINKLOCAL(&attr->mp_nexthop_global)) {
2559 subgroup_announce_reset_nhop(AF_INET6, attr);
2560 nh_reset = true;
2561 }
2562 }
2563
2564 /* If this is an iBGP, send Origin Validation State (OVS)
2565 * extended community (rfc8097).
2566 */
2567 if (peer->sort == BGP_PEER_IBGP) {
2568 enum rpki_states rpki_state = RPKI_NOT_BEING_USED;
2569
2570 rpki_state = hook_call(bgp_rpki_prefix_status, peer, attr, p);
2571
2572 if (rpki_state != RPKI_NOT_BEING_USED)
2573 bgp_attr_set_ecommunity(
2574 attr, ecommunity_add_origin_validation_state(
2575 rpki_state,
2576 bgp_attr_get_ecommunity(attr)));
2577 }
2578
2579 /*
2580 * When the next hop is set to ourselves, if all multipaths have
2581 * link-bandwidth announce the cumulative bandwidth as that makes
2582 * the most sense. However, don't modify if the link-bandwidth has
2583 * been explicitly set by user policy.
2584 */
2585 if (nh_reset &&
2586 bgp_path_info_mpath_chkwtd(bgp, pi) &&
2587 (cum_bw = bgp_path_info_mpath_cumbw(pi)) != 0 &&
2588 !CHECK_FLAG(attr->rmap_change_flags, BATTR_RMAP_LINK_BW_SET))
2589 bgp_attr_set_ecommunity(
2590 attr,
2591 ecommunity_replace_linkbw(
2592 bgp->as, bgp_attr_get_ecommunity(attr), cum_bw,
2593 CHECK_FLAG(
2594 peer->flags,
2595 PEER_FLAG_DISABLE_LINK_BW_ENCODING_IEEE)));
2596
2597 return true;
2598 }
2599
2600 static void bgp_route_select_timer_expire(struct thread *thread)
2601 {
2602 struct afi_safi_info *info;
2603 afi_t afi;
2604 safi_t safi;
2605 struct bgp *bgp;
2606
2607 info = THREAD_ARG(thread);
2608 afi = info->afi;
2609 safi = info->safi;
2610 bgp = info->bgp;
2611
2612 bgp->gr_info[afi][safi].t_route_select = NULL;
2613 XFREE(MTYPE_TMP, info);
2614
2615 /* Best path selection */
2616 bgp_best_path_select_defer(bgp, afi, safi);
2617 }
2618
2619 void bgp_best_selection(struct bgp *bgp, struct bgp_dest *dest,
2620 struct bgp_maxpaths_cfg *mpath_cfg,
2621 struct bgp_path_info_pair *result, afi_t afi,
2622 safi_t safi)
2623 {
2624 struct bgp_path_info *new_select;
2625 struct bgp_path_info *old_select;
2626 struct bgp_path_info *pi;
2627 struct bgp_path_info *pi1;
2628 struct bgp_path_info *pi2;
2629 struct bgp_path_info *nextpi = NULL;
2630 int paths_eq, do_mpath, debug;
2631 struct list mp_list;
2632 char pfx_buf[PREFIX2STR_BUFFER];
2633 char path_buf[PATH_ADDPATH_STR_BUFFER];
2634
2635 bgp_mp_list_init(&mp_list);
2636 do_mpath =
2637 (mpath_cfg->maxpaths_ebgp > 1 || mpath_cfg->maxpaths_ibgp > 1);
2638
2639 debug = bgp_debug_bestpath(dest);
2640
2641 if (debug)
2642 prefix2str(bgp_dest_get_prefix(dest), pfx_buf, sizeof(pfx_buf));
2643
2644 dest->reason = bgp_path_selection_none;
2645 /* bgp deterministic-med */
2646 new_select = NULL;
2647 if (CHECK_FLAG(bgp->flags, BGP_FLAG_DETERMINISTIC_MED)) {
2648
2649 /* Clear BGP_PATH_DMED_SELECTED for all paths */
2650 for (pi1 = bgp_dest_get_bgp_path_info(dest); pi1;
2651 pi1 = pi1->next)
2652 bgp_path_info_unset_flag(dest, pi1,
2653 BGP_PATH_DMED_SELECTED);
2654
2655 for (pi1 = bgp_dest_get_bgp_path_info(dest); pi1;
2656 pi1 = pi1->next) {
2657 if (CHECK_FLAG(pi1->flags, BGP_PATH_DMED_CHECK))
2658 continue;
2659 if (BGP_PATH_HOLDDOWN(pi1))
2660 continue;
2661 if (pi1->peer != bgp->peer_self)
2662 if (!peer_established(pi1->peer))
2663 continue;
2664
2665 new_select = pi1;
2666 if (pi1->next) {
2667 for (pi2 = pi1->next; pi2; pi2 = pi2->next) {
2668 if (CHECK_FLAG(pi2->flags,
2669 BGP_PATH_DMED_CHECK))
2670 continue;
2671 if (BGP_PATH_HOLDDOWN(pi2))
2672 continue;
2673 if (pi2->peer != bgp->peer_self
2674 && !CHECK_FLAG(
2675 pi2->peer->sflags,
2676 PEER_STATUS_NSF_WAIT))
2677 if (pi2->peer->status
2678 != Established)
2679 continue;
2680
2681 if (!aspath_cmp_left(pi1->attr->aspath,
2682 pi2->attr->aspath)
2683 && !aspath_cmp_left_confed(
2684 pi1->attr->aspath,
2685 pi2->attr->aspath))
2686 continue;
2687
2688 if (bgp_path_info_cmp(
2689 bgp, pi2, new_select,
2690 &paths_eq, mpath_cfg, debug,
2691 pfx_buf, afi, safi,
2692 &dest->reason)) {
2693 bgp_path_info_unset_flag(
2694 dest, new_select,
2695 BGP_PATH_DMED_SELECTED);
2696 new_select = pi2;
2697 }
2698
2699 bgp_path_info_set_flag(
2700 dest, pi2, BGP_PATH_DMED_CHECK);
2701 }
2702 }
2703 bgp_path_info_set_flag(dest, new_select,
2704 BGP_PATH_DMED_CHECK);
2705 bgp_path_info_set_flag(dest, new_select,
2706 BGP_PATH_DMED_SELECTED);
2707
2708 if (debug) {
2709 bgp_path_info_path_with_addpath_rx_str(
2710 new_select, path_buf, sizeof(path_buf));
2711 zlog_debug(
2712 "%pBD(%s): %s is the bestpath from AS %u",
2713 dest, bgp->name_pretty, path_buf,
2714 aspath_get_first_as(
2715 new_select->attr->aspath));
2716 }
2717 }
2718 }
2719
2720 /* Check old selected route and new selected route. */
2721 old_select = NULL;
2722 new_select = NULL;
2723 for (pi = bgp_dest_get_bgp_path_info(dest);
2724 (pi != NULL) && (nextpi = pi->next, 1); pi = nextpi) {
2725 enum bgp_path_selection_reason reason;
2726
2727 if (CHECK_FLAG(pi->flags, BGP_PATH_SELECTED))
2728 old_select = pi;
2729
2730 if (BGP_PATH_HOLDDOWN(pi)) {
2731 /* reap REMOVED routes, if needs be
2732 * selected route must stay for a while longer though
2733 */
2734 if (CHECK_FLAG(pi->flags, BGP_PATH_REMOVED)
2735 && (pi != old_select))
2736 bgp_path_info_reap(dest, pi);
2737
2738 if (debug)
2739 zlog_debug("%s: pi %p in holddown", __func__,
2740 pi);
2741
2742 continue;
2743 }
2744
2745 if (pi->peer && pi->peer != bgp->peer_self
2746 && !CHECK_FLAG(pi->peer->sflags, PEER_STATUS_NSF_WAIT))
2747 if (!peer_established(pi->peer)) {
2748
2749 if (debug)
2750 zlog_debug(
2751 "%s: pi %p non self peer %s not estab state",
2752 __func__, pi, pi->peer->host);
2753
2754 continue;
2755 }
2756
2757 if (CHECK_FLAG(bgp->flags, BGP_FLAG_DETERMINISTIC_MED)
2758 && (!CHECK_FLAG(pi->flags, BGP_PATH_DMED_SELECTED))) {
2759 bgp_path_info_unset_flag(dest, pi, BGP_PATH_DMED_CHECK);
2760 if (debug)
2761 zlog_debug("%s: pi %p dmed", __func__, pi);
2762 continue;
2763 }
2764
2765 bgp_path_info_unset_flag(dest, pi, BGP_PATH_DMED_CHECK);
2766
2767 reason = dest->reason;
2768 if (bgp_path_info_cmp(bgp, pi, new_select, &paths_eq, mpath_cfg,
2769 debug, pfx_buf, afi, safi,
2770 &dest->reason)) {
2771 if (new_select == NULL &&
2772 reason != bgp_path_selection_none)
2773 dest->reason = reason;
2774 new_select = pi;
2775 }
2776 }
2777
2778 /* Now that we know which path is the bestpath see if any of the other
2779 * paths
2780 * qualify as multipaths
2781 */
2782 if (debug) {
2783 if (new_select)
2784 bgp_path_info_path_with_addpath_rx_str(
2785 new_select, path_buf, sizeof(path_buf));
2786 else
2787 snprintf(path_buf, sizeof(path_buf), "NONE");
2788 zlog_debug(
2789 "%pBD(%s): After path selection, newbest is %s oldbest was %s",
2790 dest, bgp->name_pretty, path_buf,
2791 old_select ? old_select->peer->host : "NONE");
2792 }
2793
2794 if (do_mpath && new_select) {
2795 for (pi = bgp_dest_get_bgp_path_info(dest);
2796 (pi != NULL) && (nextpi = pi->next, 1); pi = nextpi) {
2797
2798 if (debug)
2799 bgp_path_info_path_with_addpath_rx_str(
2800 pi, path_buf, sizeof(path_buf));
2801
2802 if (pi == new_select) {
2803 if (debug)
2804 zlog_debug(
2805 "%pBD(%s): %s is the bestpath, add to the multipath list",
2806 dest, bgp->name_pretty,
2807 path_buf);
2808 bgp_mp_list_add(&mp_list, pi);
2809 continue;
2810 }
2811
2812 if (BGP_PATH_HOLDDOWN(pi))
2813 continue;
2814
2815 if (pi->peer && pi->peer != bgp->peer_self
2816 && !CHECK_FLAG(pi->peer->sflags,
2817 PEER_STATUS_NSF_WAIT))
2818 if (!peer_established(pi->peer))
2819 continue;
2820
2821 if (!bgp_path_info_nexthop_cmp(pi, new_select)) {
2822 if (debug)
2823 zlog_debug(
2824 "%pBD: %s has the same nexthop as the bestpath, skip it",
2825 dest, path_buf);
2826 continue;
2827 }
2828
2829 bgp_path_info_cmp(bgp, pi, new_select, &paths_eq,
2830 mpath_cfg, debug, pfx_buf, afi, safi,
2831 &dest->reason);
2832
2833 if (paths_eq) {
2834 if (debug)
2835 zlog_debug(
2836 "%pBD: %s is equivalent to the bestpath, add to the multipath list",
2837 dest, path_buf);
2838 bgp_mp_list_add(&mp_list, pi);
2839 }
2840 }
2841 }
2842
2843 bgp_path_info_mpath_update(bgp, dest, new_select, old_select, &mp_list,
2844 mpath_cfg);
2845 bgp_path_info_mpath_aggregate_update(new_select, old_select);
2846 bgp_mp_list_clear(&mp_list);
2847
2848 bgp_addpath_update_ids(bgp, dest, afi, safi);
2849
2850 result->old = old_select;
2851 result->new = new_select;
2852
2853 return;
2854 }
2855
2856 /*
2857 * A new route/change in bestpath of an existing route. Evaluate the path
2858 * for advertisement to the subgroup.
2859 */
2860 void subgroup_process_announce_selected(struct update_subgroup *subgrp,
2861 struct bgp_path_info *selected,
2862 struct bgp_dest *dest,
2863 uint32_t addpath_tx_id)
2864 {
2865 const struct prefix *p;
2866 struct peer *onlypeer;
2867 struct attr attr;
2868 afi_t afi;
2869 safi_t safi;
2870 struct bgp *bgp;
2871 bool advertise;
2872
2873 p = bgp_dest_get_prefix(dest);
2874 afi = SUBGRP_AFI(subgrp);
2875 safi = SUBGRP_SAFI(subgrp);
2876 bgp = SUBGRP_INST(subgrp);
2877 onlypeer = ((SUBGRP_PCOUNT(subgrp) == 1) ? (SUBGRP_PFIRST(subgrp))->peer
2878 : NULL);
2879
2880 if (BGP_DEBUG(update, UPDATE_OUT))
2881 zlog_debug("%s: p=%pFX, selected=%p", __func__, p, selected);
2882
2883 /* First update is deferred until ORF or ROUTE-REFRESH is received */
2884 if (onlypeer && CHECK_FLAG(onlypeer->af_sflags[afi][safi],
2885 PEER_STATUS_ORF_WAIT_REFRESH))
2886 return;
2887
2888 memset(&attr, 0, sizeof(attr));
2889 /* It's initialized in bgp_announce_check() */
2890
2891 /* Announcement to the subgroup. If the route is filtered withdraw it.
2892 * If BGP_NODE_FIB_INSTALL_PENDING is set and data plane install status
2893 * is pending (BGP_NODE_FIB_INSTALL_PENDING), do not advertise the
2894 * route
2895 */
2896 advertise = bgp_check_advertise(bgp, dest);
2897
2898 if (selected) {
2899 if (subgroup_announce_check(dest, selected, subgrp, p, &attr,
2900 NULL)) {
2901 /* Route is selected, if the route is already installed
2902 * in FIB, then it is advertised
2903 */
2904 if (advertise) {
2905 if (!bgp_check_withdrawal(bgp, dest))
2906 bgp_adj_out_set_subgroup(
2907 dest, subgrp, &attr, selected);
2908 else
2909 bgp_adj_out_unset_subgroup(
2910 dest, subgrp, 1, addpath_tx_id);
2911 }
2912 } else
2913 bgp_adj_out_unset_subgroup(dest, subgrp, 1,
2914 addpath_tx_id);
2915 }
2916
2917 /* If selected is NULL we must withdraw the path using addpath_tx_id */
2918 else {
2919 bgp_adj_out_unset_subgroup(dest, subgrp, 1, addpath_tx_id);
2920 }
2921 }
2922
2923 /*
2924 * Clear IGP changed flag and attribute changed flag for a route (all paths).
2925 * This is called at the end of route processing.
2926 */
2927 void bgp_zebra_clear_route_change_flags(struct bgp_dest *dest)
2928 {
2929 struct bgp_path_info *pi;
2930
2931 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next) {
2932 if (BGP_PATH_HOLDDOWN(pi))
2933 continue;
2934 UNSET_FLAG(pi->flags, BGP_PATH_IGP_CHANGED);
2935 UNSET_FLAG(pi->flags, BGP_PATH_ATTR_CHANGED);
2936 }
2937 }
2938
2939 /*
2940 * Has the route changed from the RIB's perspective? This is invoked only
2941 * if the route selection returns the same best route as earlier - to
2942 * determine if we need to update zebra or not.
2943 */
2944 bool bgp_zebra_has_route_changed(struct bgp_path_info *selected)
2945 {
2946 struct bgp_path_info *mpinfo;
2947
2948 /* If this is multipath, check all selected paths for any nexthop
2949 * change or attribute change. Some attribute changes (e.g., community)
2950 * aren't of relevance to the RIB, but we'll update zebra to ensure
2951 * we handle the case of BGP nexthop change. This is the behavior
2952 * when the best path has an attribute change anyway.
2953 */
2954 if (CHECK_FLAG(selected->flags, BGP_PATH_IGP_CHANGED)
2955 || CHECK_FLAG(selected->flags, BGP_PATH_MULTIPATH_CHG)
2956 || CHECK_FLAG(selected->flags, BGP_PATH_LINK_BW_CHG))
2957 return true;
2958
2959 /*
2960 * If this is multipath, check all selected paths for any nexthop change
2961 */
2962 for (mpinfo = bgp_path_info_mpath_first(selected); mpinfo;
2963 mpinfo = bgp_path_info_mpath_next(mpinfo)) {
2964 if (CHECK_FLAG(mpinfo->flags, BGP_PATH_IGP_CHANGED)
2965 || CHECK_FLAG(mpinfo->flags, BGP_PATH_ATTR_CHANGED))
2966 return true;
2967 }
2968
2969 /* Nothing has changed from the RIB's perspective. */
2970 return false;
2971 }
2972
2973 struct bgp_process_queue {
2974 struct bgp *bgp;
2975 STAILQ_HEAD(, bgp_dest) pqueue;
2976 #define BGP_PROCESS_QUEUE_EOIU_MARKER (1 << 0)
2977 unsigned int flags;
2978 unsigned int queued;
2979 };
2980
2981 static void bgp_process_evpn_route_injection(struct bgp *bgp, afi_t afi,
2982 safi_t safi, struct bgp_dest *dest,
2983 struct bgp_path_info *new_select,
2984 struct bgp_path_info *old_select)
2985 {
2986 const struct prefix *p = bgp_dest_get_prefix(dest);
2987
2988 if ((afi != AFI_IP && afi != AFI_IP6) || (safi != SAFI_UNICAST))
2989 return;
2990
2991 if (advertise_type5_routes(bgp, afi) && new_select
2992 && is_route_injectable_into_evpn(new_select)) {
2993
2994 /* apply the route-map */
2995 if (bgp->adv_cmd_rmap[afi][safi].map) {
2996 route_map_result_t ret;
2997 struct bgp_path_info rmap_path;
2998 struct bgp_path_info_extra rmap_path_extra;
2999 struct attr dummy_attr;
3000
3001 dummy_attr = *new_select->attr;
3002
3003 /* Fill temp path_info */
3004 prep_for_rmap_apply(&rmap_path, &rmap_path_extra, dest,
3005 new_select, new_select->peer,
3006 &dummy_attr);
3007
3008 RESET_FLAG(dummy_attr.rmap_change_flags);
3009
3010 ret = route_map_apply(bgp->adv_cmd_rmap[afi][safi].map,
3011 p, &rmap_path);
3012
3013 if (ret == RMAP_DENYMATCH) {
3014 bgp_attr_flush(&dummy_attr);
3015 bgp_evpn_withdraw_type5_route(bgp, p, afi,
3016 safi);
3017 } else
3018 bgp_evpn_advertise_type5_route(
3019 bgp, p, &dummy_attr, afi, safi);
3020 } else {
3021 bgp_evpn_advertise_type5_route(bgp, p, new_select->attr,
3022 afi, safi);
3023 }
3024 } else if (advertise_type5_routes(bgp, afi) && old_select
3025 && is_route_injectable_into_evpn(old_select))
3026 bgp_evpn_withdraw_type5_route(bgp, p, afi, safi);
3027 }
3028
3029 /*
3030 * Utility to determine whether a particular path_info should use
3031 * the IMPLICIT_NULL label. This is pretty specialized: it's only called
3032 * in a path where we basically _know_ this is a BGP-LU route.
3033 */
3034 static bool bgp_lu_need_imp_null(const struct bgp_path_info *new_select)
3035 {
3036 /* Certain types get imp null; so do paths where the nexthop is
3037 * not labeled.
3038 */
3039 if (new_select->sub_type == BGP_ROUTE_STATIC
3040 || new_select->sub_type == BGP_ROUTE_AGGREGATE
3041 || new_select->sub_type == BGP_ROUTE_REDISTRIBUTE)
3042 return true;
3043 else if (new_select->extra == NULL ||
3044 !bgp_is_valid_label(&new_select->extra->label[0]))
3045 /* TODO -- should be configurable? */
3046 return true;
3047 else
3048 return false;
3049 }
3050
3051 /*
3052 * old_select = The old best path
3053 * new_select = the new best path
3054 *
3055 * if (!old_select && new_select)
3056 * We are sending new information on.
3057 *
3058 * if (old_select && new_select) {
3059 * if (new_select != old_select)
3060 * We have a new best path send a change
3061 * else
3062 * We've received a update with new attributes that needs
3063 * to be passed on.
3064 * }
3065 *
3066 * if (old_select && !new_select)
3067 * We have no eligible route that we can announce or the rn
3068 * is being removed.
3069 */
3070 static void bgp_process_main_one(struct bgp *bgp, struct bgp_dest *dest,
3071 afi_t afi, safi_t safi)
3072 {
3073 struct bgp_path_info *new_select;
3074 struct bgp_path_info *old_select;
3075 struct bgp_path_info_pair old_and_new;
3076 int debug = 0;
3077
3078 if (CHECK_FLAG(bgp->flags, BGP_FLAG_DELETE_IN_PROGRESS)) {
3079 if (dest)
3080 debug = bgp_debug_bestpath(dest);
3081 if (debug)
3082 zlog_debug(
3083 "%s: bgp delete in progress, ignoring event, p=%pBD",
3084 __func__, dest);
3085 return;
3086 }
3087 /* Is it end of initial update? (after startup) */
3088 if (!dest) {
3089 frr_timestamp(3, bgp->update_delay_zebra_resume_time,
3090 sizeof(bgp->update_delay_zebra_resume_time));
3091
3092 bgp->main_zebra_update_hold = 0;
3093 FOREACH_AFI_SAFI (afi, safi) {
3094 if (bgp_fibupd_safi(safi))
3095 bgp_zebra_announce_table(bgp, afi, safi);
3096 }
3097 bgp->main_peers_update_hold = 0;
3098
3099 bgp_start_routeadv(bgp);
3100 return;
3101 }
3102
3103 const struct prefix *p = bgp_dest_get_prefix(dest);
3104
3105 debug = bgp_debug_bestpath(dest);
3106 if (debug)
3107 zlog_debug("%s: p=%pBDi(%s) afi=%s, safi=%s start", __func__,
3108 dest, bgp->name_pretty, afi2str(afi),
3109 safi2str(safi));
3110
3111 /* The best path calculation for the route is deferred if
3112 * BGP_NODE_SELECT_DEFER is set
3113 */
3114 if (CHECK_FLAG(dest->flags, BGP_NODE_SELECT_DEFER)) {
3115 if (BGP_DEBUG(update, UPDATE_OUT))
3116 zlog_debug("SELECT_DEFER flag set for route %p", dest);
3117 return;
3118 }
3119
3120 /* Best path selection. */
3121 bgp_best_selection(bgp, dest, &bgp->maxpaths[afi][safi], &old_and_new,
3122 afi, safi);
3123 old_select = old_and_new.old;
3124 new_select = old_and_new.new;
3125
3126 /* Do we need to allocate or free labels?
3127 * Right now, since we only deal with per-prefix labels, it is not
3128 * necessary to do this upon changes to best path. Exceptions:
3129 * - label index has changed -> recalculate resulting label
3130 * - path_info sub_type changed -> switch to/from implicit-null
3131 * - no valid label (due to removed static label binding) -> get new one
3132 */
3133 if (bgp->allocate_mpls_labels[afi][safi]) {
3134 if (new_select) {
3135 if (!old_select
3136 || bgp_label_index_differs(new_select, old_select)
3137 || new_select->sub_type != old_select->sub_type
3138 || !bgp_is_valid_label(&dest->local_label)) {
3139 /* Enforced penultimate hop popping:
3140 * implicit-null for local routes, aggregate
3141 * and redistributed routes
3142 */
3143 if (bgp_lu_need_imp_null(new_select)) {
3144 if (CHECK_FLAG(
3145 dest->flags,
3146 BGP_NODE_REGISTERED_FOR_LABEL)
3147 || CHECK_FLAG(
3148 dest->flags,
3149 BGP_NODE_LABEL_REQUESTED))
3150 bgp_unregister_for_label(dest);
3151 dest->local_label = mpls_lse_encode(
3152 MPLS_LABEL_IMPLICIT_NULL, 0, 0,
3153 1);
3154 bgp_set_valid_label(&dest->local_label);
3155 } else
3156 bgp_register_for_label(dest,
3157 new_select);
3158 }
3159 } else if (CHECK_FLAG(dest->flags,
3160 BGP_NODE_REGISTERED_FOR_LABEL)
3161 || CHECK_FLAG(dest->flags,
3162 BGP_NODE_LABEL_REQUESTED)) {
3163 bgp_unregister_for_label(dest);
3164 }
3165 } else if (CHECK_FLAG(dest->flags, BGP_NODE_REGISTERED_FOR_LABEL)
3166 || CHECK_FLAG(dest->flags, BGP_NODE_LABEL_REQUESTED)) {
3167 bgp_unregister_for_label(dest);
3168 }
3169
3170 if (debug)
3171 zlog_debug(
3172 "%s: p=%pBD(%s) afi=%s, safi=%s, old_select=%p, new_select=%p",
3173 __func__, dest, bgp->name_pretty, afi2str(afi),
3174 safi2str(safi), old_select, new_select);
3175
3176 /* If best route remains the same and this is not due to user-initiated
3177 * clear, see exactly what needs to be done.
3178 */
3179 if (old_select && old_select == new_select
3180 && !CHECK_FLAG(dest->flags, BGP_NODE_USER_CLEAR)
3181 && !CHECK_FLAG(old_select->flags, BGP_PATH_ATTR_CHANGED)
3182 && !bgp_addpath_is_addpath_used(&bgp->tx_addpath, afi, safi)) {
3183 if (bgp_zebra_has_route_changed(old_select)) {
3184 #ifdef ENABLE_BGP_VNC
3185 vnc_import_bgp_add_route(bgp, p, old_select);
3186 vnc_import_bgp_exterior_add_route(bgp, p, old_select);
3187 #endif
3188 if (bgp_fibupd_safi(safi)
3189 && !bgp_option_check(BGP_OPT_NO_FIB)) {
3190
3191 if (BGP_SUPPRESS_FIB_ENABLED(bgp)
3192 && new_select->sub_type == BGP_ROUTE_NORMAL)
3193 SET_FLAG(dest->flags,
3194 BGP_NODE_FIB_INSTALL_PENDING);
3195
3196 if (new_select->type == ZEBRA_ROUTE_BGP
3197 && (new_select->sub_type == BGP_ROUTE_NORMAL
3198 || new_select->sub_type
3199 == BGP_ROUTE_IMPORTED))
3200
3201 bgp_zebra_announce(dest, p, old_select,
3202 bgp, afi, safi);
3203 }
3204 }
3205
3206 /* If there is a change of interest to peers, reannounce the
3207 * route. */
3208 if (CHECK_FLAG(old_select->flags, BGP_PATH_ATTR_CHANGED)
3209 || CHECK_FLAG(old_select->flags, BGP_PATH_LINK_BW_CHG)
3210 || CHECK_FLAG(dest->flags, BGP_NODE_LABEL_CHANGED)) {
3211 group_announce_route(bgp, afi, safi, dest, new_select);
3212
3213 /* unicast routes must also be annouced to
3214 * labeled-unicast update-groups */
3215 if (safi == SAFI_UNICAST)
3216 group_announce_route(bgp, afi,
3217 SAFI_LABELED_UNICAST, dest,
3218 new_select);
3219
3220 UNSET_FLAG(old_select->flags, BGP_PATH_ATTR_CHANGED);
3221 UNSET_FLAG(dest->flags, BGP_NODE_LABEL_CHANGED);
3222 }
3223
3224 /* advertise/withdraw type-5 routes */
3225 if (CHECK_FLAG(old_select->flags, BGP_PATH_LINK_BW_CHG)
3226 || CHECK_FLAG(old_select->flags, BGP_PATH_MULTIPATH_CHG))
3227 bgp_process_evpn_route_injection(
3228 bgp, afi, safi, dest, old_select, old_select);
3229
3230 UNSET_FLAG(old_select->flags, BGP_PATH_MULTIPATH_CHG);
3231 UNSET_FLAG(old_select->flags, BGP_PATH_LINK_BW_CHG);
3232 bgp_zebra_clear_route_change_flags(dest);
3233 UNSET_FLAG(dest->flags, BGP_NODE_PROCESS_SCHEDULED);
3234 return;
3235 }
3236
3237 /* If the user did "clear ip bgp prefix x.x.x.x" this flag will be set
3238 */
3239 UNSET_FLAG(dest->flags, BGP_NODE_USER_CLEAR);
3240
3241 /* bestpath has changed; bump version */
3242 if (old_select || new_select) {
3243 bgp_bump_version(dest);
3244
3245 if (!bgp->t_rmap_def_originate_eval) {
3246 bgp_lock(bgp);
3247 thread_add_timer(
3248 bm->master,
3249 update_group_refresh_default_originate_route_map,
3250 bgp, RMAP_DEFAULT_ORIGINATE_EVAL_TIMER,
3251 &bgp->t_rmap_def_originate_eval);
3252 }
3253 }
3254
3255 if (old_select)
3256 bgp_path_info_unset_flag(dest, old_select, BGP_PATH_SELECTED);
3257 if (new_select) {
3258 if (debug)
3259 zlog_debug("%s: setting SELECTED flag", __func__);
3260 bgp_path_info_set_flag(dest, new_select, BGP_PATH_SELECTED);
3261 bgp_path_info_unset_flag(dest, new_select,
3262 BGP_PATH_ATTR_CHANGED);
3263 UNSET_FLAG(new_select->flags, BGP_PATH_MULTIPATH_CHG);
3264 UNSET_FLAG(new_select->flags, BGP_PATH_LINK_BW_CHG);
3265 }
3266
3267 #ifdef ENABLE_BGP_VNC
3268 if ((afi == AFI_IP || afi == AFI_IP6) && (safi == SAFI_UNICAST)) {
3269 if (old_select != new_select) {
3270 if (old_select) {
3271 vnc_import_bgp_exterior_del_route(bgp, p,
3272 old_select);
3273 vnc_import_bgp_del_route(bgp, p, old_select);
3274 }
3275 if (new_select) {
3276 vnc_import_bgp_exterior_add_route(bgp, p,
3277 new_select);
3278 vnc_import_bgp_add_route(bgp, p, new_select);
3279 }
3280 }
3281 }
3282 #endif
3283
3284 group_announce_route(bgp, afi, safi, dest, new_select);
3285
3286 /* unicast routes must also be annouced to labeled-unicast update-groups
3287 */
3288 if (safi == SAFI_UNICAST)
3289 group_announce_route(bgp, afi, SAFI_LABELED_UNICAST, dest,
3290 new_select);
3291
3292 /* FIB update. */
3293 if (bgp_fibupd_safi(safi) && (bgp->inst_type != BGP_INSTANCE_TYPE_VIEW)
3294 && !bgp_option_check(BGP_OPT_NO_FIB)) {
3295
3296 if (new_select && new_select->type == ZEBRA_ROUTE_BGP
3297 && (new_select->sub_type == BGP_ROUTE_NORMAL
3298 || new_select->sub_type == BGP_ROUTE_AGGREGATE
3299 || new_select->sub_type == BGP_ROUTE_IMPORTED)) {
3300
3301 if (BGP_SUPPRESS_FIB_ENABLED(bgp))
3302 SET_FLAG(dest->flags,
3303 BGP_NODE_FIB_INSTALL_PENDING);
3304
3305 /* if this is an evpn imported type-5 prefix,
3306 * we need to withdraw the route first to clear
3307 * the nh neigh and the RMAC entry.
3308 */
3309 if (old_select &&
3310 is_route_parent_evpn(old_select))
3311 bgp_zebra_withdraw(p, old_select, bgp, safi);
3312
3313 bgp_zebra_announce(dest, p, new_select, bgp, afi, safi);
3314 } else {
3315 /* Withdraw the route from the kernel. */
3316 if (old_select && old_select->type == ZEBRA_ROUTE_BGP
3317 && (old_select->sub_type == BGP_ROUTE_NORMAL
3318 || old_select->sub_type == BGP_ROUTE_AGGREGATE
3319 || old_select->sub_type == BGP_ROUTE_IMPORTED))
3320
3321 bgp_zebra_withdraw(p, old_select, bgp, safi);
3322 }
3323 }
3324
3325 bgp_process_evpn_route_injection(bgp, afi, safi, dest, new_select,
3326 old_select);
3327
3328 /* Clear any route change flags. */
3329 bgp_zebra_clear_route_change_flags(dest);
3330
3331 /* Reap old select bgp_path_info, if it has been removed */
3332 if (old_select && CHECK_FLAG(old_select->flags, BGP_PATH_REMOVED))
3333 bgp_path_info_reap(dest, old_select);
3334
3335 UNSET_FLAG(dest->flags, BGP_NODE_PROCESS_SCHEDULED);
3336 return;
3337 }
3338
3339 /* Process the routes with the flag BGP_NODE_SELECT_DEFER set */
3340 void bgp_best_path_select_defer(struct bgp *bgp, afi_t afi, safi_t safi)
3341 {
3342 struct bgp_dest *dest;
3343 int cnt = 0;
3344 struct afi_safi_info *thread_info;
3345
3346 if (bgp->gr_info[afi][safi].t_route_select) {
3347 struct thread *t = bgp->gr_info[afi][safi].t_route_select;
3348
3349 thread_info = THREAD_ARG(t);
3350 XFREE(MTYPE_TMP, thread_info);
3351 THREAD_OFF(bgp->gr_info[afi][safi].t_route_select);
3352 }
3353
3354 if (BGP_DEBUG(update, UPDATE_OUT)) {
3355 zlog_debug("%s: processing route for %s : cnt %d", __func__,
3356 get_afi_safi_str(afi, safi, false),
3357 bgp->gr_info[afi][safi].gr_deferred);
3358 }
3359
3360 /* Process the route list */
3361 for (dest = bgp_table_top(bgp->rib[afi][safi]);
3362 dest && bgp->gr_info[afi][safi].gr_deferred != 0 &&
3363 cnt < BGP_MAX_BEST_ROUTE_SELECT;
3364 dest = bgp_route_next(dest)) {
3365 if (!CHECK_FLAG(dest->flags, BGP_NODE_SELECT_DEFER))
3366 continue;
3367
3368 UNSET_FLAG(dest->flags, BGP_NODE_SELECT_DEFER);
3369 bgp->gr_info[afi][safi].gr_deferred--;
3370 bgp_process_main_one(bgp, dest, afi, safi);
3371 cnt++;
3372 }
3373 /* If iteration stopped before the entire table was traversed then the
3374 * node needs to be unlocked.
3375 */
3376 if (dest) {
3377 bgp_dest_unlock_node(dest);
3378 dest = NULL;
3379 }
3380
3381 /* Send EOR message when all routes are processed */
3382 if (!bgp->gr_info[afi][safi].gr_deferred) {
3383 bgp_send_delayed_eor(bgp);
3384 /* Send route processing complete message to RIB */
3385 bgp_zebra_update(afi, safi, bgp->vrf_id,
3386 ZEBRA_CLIENT_ROUTE_UPDATE_COMPLETE);
3387 return;
3388 }
3389
3390 thread_info = XMALLOC(MTYPE_TMP, sizeof(struct afi_safi_info));
3391
3392 thread_info->afi = afi;
3393 thread_info->safi = safi;
3394 thread_info->bgp = bgp;
3395
3396 /* If there are more routes to be processed, start the
3397 * selection timer
3398 */
3399 thread_add_timer(bm->master, bgp_route_select_timer_expire, thread_info,
3400 BGP_ROUTE_SELECT_DELAY,
3401 &bgp->gr_info[afi][safi].t_route_select);
3402 }
3403
3404 static wq_item_status bgp_process_wq(struct work_queue *wq, void *data)
3405 {
3406 struct bgp_process_queue *pqnode = data;
3407 struct bgp *bgp = pqnode->bgp;
3408 struct bgp_table *table;
3409 struct bgp_dest *dest;
3410
3411 /* eoiu marker */
3412 if (CHECK_FLAG(pqnode->flags, BGP_PROCESS_QUEUE_EOIU_MARKER)) {
3413 bgp_process_main_one(bgp, NULL, 0, 0);
3414 /* should always have dedicated wq call */
3415 assert(STAILQ_FIRST(&pqnode->pqueue) == NULL);
3416 return WQ_SUCCESS;
3417 }
3418
3419 while (!STAILQ_EMPTY(&pqnode->pqueue)) {
3420 dest = STAILQ_FIRST(&pqnode->pqueue);
3421 STAILQ_REMOVE_HEAD(&pqnode->pqueue, pq);
3422 STAILQ_NEXT(dest, pq) = NULL; /* complete unlink */
3423 table = bgp_dest_table(dest);
3424 /* note, new DESTs may be added as part of processing */
3425 bgp_process_main_one(bgp, dest, table->afi, table->safi);
3426
3427 bgp_dest_unlock_node(dest);
3428 bgp_table_unlock(table);
3429 }
3430
3431 return WQ_SUCCESS;
3432 }
3433
3434 static void bgp_processq_del(struct work_queue *wq, void *data)
3435 {
3436 struct bgp_process_queue *pqnode = data;
3437
3438 bgp_unlock(pqnode->bgp);
3439
3440 XFREE(MTYPE_BGP_PROCESS_QUEUE, pqnode);
3441 }
3442
3443 void bgp_process_queue_init(struct bgp *bgp)
3444 {
3445 if (!bgp->process_queue) {
3446 char name[BUFSIZ];
3447
3448 snprintf(name, BUFSIZ, "process_queue %s", bgp->name_pretty);
3449 bgp->process_queue = work_queue_new(bm->master, name);
3450 }
3451
3452 bgp->process_queue->spec.workfunc = &bgp_process_wq;
3453 bgp->process_queue->spec.del_item_data = &bgp_processq_del;
3454 bgp->process_queue->spec.max_retries = 0;
3455 bgp->process_queue->spec.hold = 50;
3456 /* Use a higher yield value of 50ms for main queue processing */
3457 bgp->process_queue->spec.yield = 50 * 1000L;
3458 }
3459
3460 static struct bgp_process_queue *bgp_processq_alloc(struct bgp *bgp)
3461 {
3462 struct bgp_process_queue *pqnode;
3463
3464 pqnode = XCALLOC(MTYPE_BGP_PROCESS_QUEUE,
3465 sizeof(struct bgp_process_queue));
3466
3467 /* unlocked in bgp_processq_del */
3468 pqnode->bgp = bgp_lock(bgp);
3469 STAILQ_INIT(&pqnode->pqueue);
3470
3471 return pqnode;
3472 }
3473
3474 void bgp_process(struct bgp *bgp, struct bgp_dest *dest, afi_t afi, safi_t safi)
3475 {
3476 #define ARBITRARY_PROCESS_QLEN 10000
3477 struct work_queue *wq = bgp->process_queue;
3478 struct bgp_process_queue *pqnode;
3479 int pqnode_reuse = 0;
3480
3481 /* already scheduled for processing? */
3482 if (CHECK_FLAG(dest->flags, BGP_NODE_PROCESS_SCHEDULED))
3483 return;
3484
3485 /* If the flag BGP_NODE_SELECT_DEFER is set, do not add route to
3486 * the workqueue
3487 */
3488 if (CHECK_FLAG(dest->flags, BGP_NODE_SELECT_DEFER)) {
3489 if (BGP_DEBUG(update, UPDATE_OUT))
3490 zlog_debug("BGP_NODE_SELECT_DEFER set for route %p",
3491 dest);
3492 return;
3493 }
3494
3495 if (CHECK_FLAG(dest->flags, BGP_NODE_SOFT_RECONFIG)) {
3496 if (BGP_DEBUG(update, UPDATE_OUT))
3497 zlog_debug(
3498 "Soft reconfigure table in progress for route %p",
3499 dest);
3500 return;
3501 }
3502
3503 if (wq == NULL)
3504 return;
3505
3506 /* Add route nodes to an existing work queue item until reaching the
3507 limit only if is from the same BGP view and it's not an EOIU marker
3508 */
3509 if (work_queue_item_count(wq)) {
3510 struct work_queue_item *item = work_queue_last_item(wq);
3511 pqnode = item->data;
3512
3513 if (CHECK_FLAG(pqnode->flags, BGP_PROCESS_QUEUE_EOIU_MARKER)
3514 || pqnode->bgp != bgp
3515 || pqnode->queued >= ARBITRARY_PROCESS_QLEN)
3516 pqnode = bgp_processq_alloc(bgp);
3517 else
3518 pqnode_reuse = 1;
3519 } else
3520 pqnode = bgp_processq_alloc(bgp);
3521 /* all unlocked in bgp_process_wq */
3522 bgp_table_lock(bgp_dest_table(dest));
3523
3524 SET_FLAG(dest->flags, BGP_NODE_PROCESS_SCHEDULED);
3525 bgp_dest_lock_node(dest);
3526
3527 /* can't be enqueued twice */
3528 assert(STAILQ_NEXT(dest, pq) == NULL);
3529 STAILQ_INSERT_TAIL(&pqnode->pqueue, dest, pq);
3530 pqnode->queued++;
3531
3532 if (!pqnode_reuse)
3533 work_queue_add(wq, pqnode);
3534
3535 return;
3536 }
3537
3538 void bgp_add_eoiu_mark(struct bgp *bgp)
3539 {
3540 struct bgp_process_queue *pqnode;
3541
3542 if (bgp->process_queue == NULL)
3543 return;
3544
3545 pqnode = bgp_processq_alloc(bgp);
3546
3547 SET_FLAG(pqnode->flags, BGP_PROCESS_QUEUE_EOIU_MARKER);
3548 work_queue_add(bgp->process_queue, pqnode);
3549 }
3550
3551 static void bgp_maximum_prefix_restart_timer(struct thread *thread)
3552 {
3553 struct peer *peer;
3554
3555 peer = THREAD_ARG(thread);
3556 peer->t_pmax_restart = NULL;
3557
3558 if (bgp_debug_neighbor_events(peer))
3559 zlog_debug(
3560 "%s Maximum-prefix restart timer expired, restore peering",
3561 peer->host);
3562
3563 if ((peer_clear(peer, NULL) < 0) && bgp_debug_neighbor_events(peer))
3564 zlog_debug("%s: %s peer_clear failed", __func__, peer->host);
3565 }
3566
3567 static uint32_t bgp_filtered_routes_count(struct peer *peer, afi_t afi,
3568 safi_t safi)
3569 {
3570 uint32_t count = 0;
3571 bool filtered = false;
3572 struct bgp_dest *dest;
3573 struct bgp_adj_in *ain;
3574 struct attr attr = {};
3575 struct bgp_table *table = peer->bgp->rib[afi][safi];
3576
3577 for (dest = bgp_table_top(table); dest; dest = bgp_route_next(dest)) {
3578 for (ain = dest->adj_in; ain; ain = ain->next) {
3579 const struct prefix *rn_p = bgp_dest_get_prefix(dest);
3580
3581 attr = *ain->attr;
3582
3583 if (bgp_input_filter(peer, rn_p, &attr, afi, safi)
3584 == FILTER_DENY)
3585 filtered = true;
3586
3587 if (bgp_input_modifier(
3588 peer, rn_p, &attr, afi, safi,
3589 ROUTE_MAP_IN_NAME(&peer->filter[afi][safi]),
3590 NULL, 0, NULL)
3591 == RMAP_DENY)
3592 filtered = true;
3593
3594 if (filtered)
3595 count++;
3596
3597 bgp_attr_flush(&attr);
3598 }
3599 }
3600
3601 return count;
3602 }
3603
3604 bool bgp_maximum_prefix_overflow(struct peer *peer, afi_t afi, safi_t safi,
3605 int always)
3606 {
3607 iana_afi_t pkt_afi;
3608 iana_safi_t pkt_safi;
3609 uint32_t pcount = (CHECK_FLAG(peer->af_flags[afi][safi],
3610 PEER_FLAG_MAX_PREFIX_FORCE))
3611 ? bgp_filtered_routes_count(peer, afi, safi)
3612 + peer->pcount[afi][safi]
3613 : peer->pcount[afi][safi];
3614
3615 if (!CHECK_FLAG(peer->af_flags[afi][safi], PEER_FLAG_MAX_PREFIX))
3616 return false;
3617
3618 if (pcount > peer->pmax[afi][safi]) {
3619 if (CHECK_FLAG(peer->af_sflags[afi][safi],
3620 PEER_STATUS_PREFIX_LIMIT)
3621 && !always)
3622 return false;
3623
3624 zlog_info(
3625 "%%MAXPFXEXCEED: No. of %s prefix received from %pBP %u exceed, limit %u",
3626 get_afi_safi_str(afi, safi, false), peer, pcount,
3627 peer->pmax[afi][safi]);
3628 SET_FLAG(peer->af_sflags[afi][safi], PEER_STATUS_PREFIX_LIMIT);
3629
3630 if (CHECK_FLAG(peer->af_flags[afi][safi],
3631 PEER_FLAG_MAX_PREFIX_WARNING))
3632 return false;
3633
3634 /* Convert AFI, SAFI to values for packet. */
3635 pkt_afi = afi_int2iana(afi);
3636 pkt_safi = safi_int2iana(safi);
3637 {
3638 uint8_t ndata[7];
3639
3640 ndata[0] = (pkt_afi >> 8);
3641 ndata[1] = pkt_afi;
3642 ndata[2] = pkt_safi;
3643 ndata[3] = (peer->pmax[afi][safi] >> 24);
3644 ndata[4] = (peer->pmax[afi][safi] >> 16);
3645 ndata[5] = (peer->pmax[afi][safi] >> 8);
3646 ndata[6] = (peer->pmax[afi][safi]);
3647
3648 SET_FLAG(peer->sflags, PEER_STATUS_PREFIX_OVERFLOW);
3649 bgp_notify_send_with_data(peer, BGP_NOTIFY_CEASE,
3650 BGP_NOTIFY_CEASE_MAX_PREFIX,
3651 ndata, 7);
3652 }
3653
3654 /* Dynamic peers will just close their connection. */
3655 if (peer_dynamic_neighbor(peer))
3656 return true;
3657
3658 /* restart timer start */
3659 if (peer->pmax_restart[afi][safi]) {
3660 peer->v_pmax_restart =
3661 peer->pmax_restart[afi][safi] * 60;
3662
3663 if (bgp_debug_neighbor_events(peer))
3664 zlog_debug(
3665 "%pBP Maximum-prefix restart timer started for %d secs",
3666 peer, peer->v_pmax_restart);
3667
3668 BGP_TIMER_ON(peer->t_pmax_restart,
3669 bgp_maximum_prefix_restart_timer,
3670 peer->v_pmax_restart);
3671 }
3672
3673 return true;
3674 } else
3675 UNSET_FLAG(peer->af_sflags[afi][safi],
3676 PEER_STATUS_PREFIX_LIMIT);
3677
3678 if (pcount
3679 > (peer->pmax[afi][safi] * peer->pmax_threshold[afi][safi] / 100)) {
3680 if (CHECK_FLAG(peer->af_sflags[afi][safi],
3681 PEER_STATUS_PREFIX_THRESHOLD)
3682 && !always)
3683 return false;
3684
3685 zlog_info(
3686 "%%MAXPFX: No. of %s prefix received from %pBP reaches %u, max %u",
3687 get_afi_safi_str(afi, safi, false), peer, pcount,
3688 peer->pmax[afi][safi]);
3689 SET_FLAG(peer->af_sflags[afi][safi],
3690 PEER_STATUS_PREFIX_THRESHOLD);
3691 } else
3692 UNSET_FLAG(peer->af_sflags[afi][safi],
3693 PEER_STATUS_PREFIX_THRESHOLD);
3694 return false;
3695 }
3696
3697 /* Unconditionally remove the route from the RIB, without taking
3698 * damping into consideration (eg, because the session went down)
3699 */
3700 void bgp_rib_remove(struct bgp_dest *dest, struct bgp_path_info *pi,
3701 struct peer *peer, afi_t afi, safi_t safi)
3702 {
3703
3704 struct bgp *bgp = NULL;
3705 bool delete_route = false;
3706
3707 bgp_aggregate_decrement(peer->bgp, bgp_dest_get_prefix(dest), pi, afi,
3708 safi);
3709
3710 if (!CHECK_FLAG(pi->flags, BGP_PATH_HISTORY)) {
3711 bgp_path_info_delete(dest, pi); /* keep historical info */
3712
3713 /* If the selected path is removed, reset BGP_NODE_SELECT_DEFER
3714 * flag
3715 */
3716 if (CHECK_FLAG(pi->flags, BGP_PATH_SELECTED))
3717 delete_route = true;
3718 else if (bgp_dest_set_defer_flag(dest, true) < 0)
3719 delete_route = true;
3720 if (delete_route) {
3721 if (CHECK_FLAG(dest->flags, BGP_NODE_SELECT_DEFER)) {
3722 UNSET_FLAG(dest->flags, BGP_NODE_SELECT_DEFER);
3723 bgp = pi->peer->bgp;
3724 bgp->gr_info[afi][safi].gr_deferred--;
3725 }
3726 }
3727 }
3728
3729 hook_call(bgp_process, peer->bgp, afi, safi, dest, peer, true);
3730 bgp_process(peer->bgp, dest, afi, safi);
3731 }
3732
3733 static void bgp_rib_withdraw(struct bgp_dest *dest, struct bgp_path_info *pi,
3734 struct peer *peer, afi_t afi, safi_t safi,
3735 struct prefix_rd *prd)
3736 {
3737 const struct prefix *p = bgp_dest_get_prefix(dest);
3738
3739 /* apply dampening, if result is suppressed, we'll be retaining
3740 * the bgp_path_info in the RIB for historical reference.
3741 */
3742 if (CHECK_FLAG(peer->bgp->af_flags[afi][safi], BGP_CONFIG_DAMPENING)
3743 && peer->sort == BGP_PEER_EBGP)
3744 if ((bgp_damp_withdraw(pi, dest, afi, safi, 0))
3745 == BGP_DAMP_SUPPRESSED) {
3746 bgp_aggregate_decrement(peer->bgp, p, pi, afi,
3747 safi);
3748 return;
3749 }
3750
3751 #ifdef ENABLE_BGP_VNC
3752 if (safi == SAFI_MPLS_VPN) {
3753 struct bgp_dest *pdest = NULL;
3754 struct bgp_table *table = NULL;
3755
3756 pdest = bgp_node_get(peer->bgp->rib[afi][safi],
3757 (struct prefix *)prd);
3758 if (bgp_dest_has_bgp_path_info_data(pdest)) {
3759 table = bgp_dest_get_bgp_table_info(pdest);
3760
3761 vnc_import_bgp_del_vnc_host_route_mode_resolve_nve(
3762 peer->bgp, prd, table, p, pi);
3763 }
3764 bgp_dest_unlock_node(pdest);
3765 }
3766 if ((afi == AFI_IP || afi == AFI_IP6) && (safi == SAFI_UNICAST)) {
3767 if (CHECK_FLAG(pi->flags, BGP_PATH_SELECTED)) {
3768
3769 vnc_import_bgp_del_route(peer->bgp, p, pi);
3770 vnc_import_bgp_exterior_del_route(peer->bgp, p, pi);
3771 }
3772 }
3773 #endif
3774
3775 /* If this is an EVPN route, process for un-import. */
3776 if (safi == SAFI_EVPN)
3777 bgp_evpn_unimport_route(peer->bgp, afi, safi, p, pi);
3778
3779 bgp_rib_remove(dest, pi, peer, afi, safi);
3780 }
3781
3782 struct bgp_path_info *info_make(int type, int sub_type, unsigned short instance,
3783 struct peer *peer, struct attr *attr,
3784 struct bgp_dest *dest)
3785 {
3786 struct bgp_path_info *new;
3787
3788 /* Make new BGP info. */
3789 new = XCALLOC(MTYPE_BGP_ROUTE, sizeof(struct bgp_path_info));
3790 new->type = type;
3791 new->instance = instance;
3792 new->sub_type = sub_type;
3793 new->peer = peer;
3794 new->attr = attr;
3795 new->uptime = monotime(NULL);
3796 new->net = dest;
3797 return new;
3798 }
3799
3800 /* Check if received nexthop is valid or not. */
3801 bool bgp_update_martian_nexthop(struct bgp *bgp, afi_t afi, safi_t safi,
3802 uint8_t type, uint8_t stype, struct attr *attr,
3803 struct bgp_dest *dest)
3804 {
3805 bool ret = false;
3806 bool is_bgp_static_route =
3807 (type == ZEBRA_ROUTE_BGP && stype == BGP_ROUTE_STATIC) ? true
3808 : false;
3809
3810 /*
3811 * Only validated for unicast and multicast currently.
3812 * Also valid for EVPN where the nexthop is an IP address.
3813 * If we are a bgp static route being checked then there is
3814 * no need to check to see if the nexthop is martian as
3815 * that it should be ok.
3816 */
3817 if (is_bgp_static_route ||
3818 (safi != SAFI_UNICAST && safi != SAFI_MULTICAST && safi != SAFI_EVPN))
3819 return false;
3820
3821 /* If NEXT_HOP is present, validate it. */
3822 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_NEXT_HOP)) {
3823 if (attr->nexthop.s_addr == INADDR_ANY ||
3824 !ipv4_unicast_valid(&attr->nexthop) ||
3825 bgp_nexthop_self(bgp, afi, type, stype, attr, dest))
3826 return true;
3827 }
3828
3829 /* If MP_NEXTHOP is present, validate it. */
3830 /* Note: For IPv6 nexthops, we only validate the global (1st) nexthop;
3831 * there is code in bgp_attr.c to ignore the link-local (2nd) nexthop if
3832 * it is not an IPv6 link-local address.
3833 *
3834 * If we receive an UPDATE with nexthop length set to 32 bytes
3835 * we shouldn't discard an UPDATE if it's set to (::).
3836 * The link-local (2st) is validated along the code path later.
3837 */
3838 if (attr->mp_nexthop_len) {
3839 switch (attr->mp_nexthop_len) {
3840 case BGP_ATTR_NHLEN_IPV4:
3841 case BGP_ATTR_NHLEN_VPNV4:
3842 ret = (attr->mp_nexthop_global_in.s_addr ==
3843 INADDR_ANY ||
3844 !ipv4_unicast_valid(
3845 &attr->mp_nexthop_global_in) ||
3846 bgp_nexthop_self(bgp, afi, type, stype, attr,
3847 dest));
3848 break;
3849
3850 case BGP_ATTR_NHLEN_IPV6_GLOBAL:
3851 case BGP_ATTR_NHLEN_VPNV6_GLOBAL:
3852 ret = (IN6_IS_ADDR_UNSPECIFIED(
3853 &attr->mp_nexthop_global)
3854 || IN6_IS_ADDR_LOOPBACK(&attr->mp_nexthop_global)
3855 || IN6_IS_ADDR_MULTICAST(
3856 &attr->mp_nexthop_global)
3857 || bgp_nexthop_self(bgp, afi, type, stype, attr,
3858 dest));
3859 break;
3860 case BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL:
3861 ret = (IN6_IS_ADDR_LOOPBACK(&attr->mp_nexthop_global)
3862 || IN6_IS_ADDR_MULTICAST(
3863 &attr->mp_nexthop_global)
3864 || bgp_nexthop_self(bgp, afi, type, stype, attr,
3865 dest));
3866 break;
3867
3868 default:
3869 ret = true;
3870 break;
3871 }
3872 }
3873
3874 return ret;
3875 }
3876
3877 static void bgp_attr_add_no_export_community(struct attr *attr)
3878 {
3879 struct community *old;
3880 struct community *new;
3881 struct community *merge;
3882 struct community *no_export;
3883
3884 old = bgp_attr_get_community(attr);
3885 no_export = community_str2com("no-export");
3886
3887 assert(no_export);
3888
3889 if (old) {
3890 merge = community_merge(community_dup(old), no_export);
3891
3892 if (!old->refcnt)
3893 community_free(&old);
3894
3895 new = community_uniq_sort(merge);
3896 community_free(&merge);
3897 } else {
3898 new = community_dup(no_export);
3899 }
3900
3901 community_free(&no_export);
3902
3903 bgp_attr_set_community(attr, new);
3904 }
3905
3906 static bool bgp_accept_own(struct peer *peer, afi_t afi, safi_t safi,
3907 struct attr *attr, const struct prefix *prefix,
3908 int *sub_type)
3909 {
3910 struct listnode *node, *nnode;
3911 struct bgp *bgp;
3912 bool accept_own_found = false;
3913
3914 if (safi != SAFI_MPLS_VPN)
3915 return false;
3916
3917 /* Processing of the ACCEPT_OWN community is enabled by configuration */
3918 if (!CHECK_FLAG(peer->af_flags[afi][safi], PEER_FLAG_ACCEPT_OWN))
3919 return false;
3920
3921 /* The route in question carries the ACCEPT_OWN community */
3922 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES)) {
3923 struct community *comm = bgp_attr_get_community(attr);
3924
3925 if (community_include(comm, COMMUNITY_ACCEPT_OWN))
3926 accept_own_found = true;
3927 }
3928
3929 /* The route in question is targeted to one or more destination VRFs
3930 * on the router (as determined by inspecting the Route Target(s)).
3931 */
3932 for (ALL_LIST_ELEMENTS(bm->bgp, node, nnode, bgp)) {
3933 if (bgp->inst_type != BGP_INSTANCE_TYPE_VRF)
3934 continue;
3935
3936 if (accept_own_found &&
3937 ecommunity_include(
3938 bgp->vpn_policy[afi]
3939 .rtlist[BGP_VPN_POLICY_DIR_TOVPN],
3940 bgp_attr_get_ecommunity(attr))) {
3941 if (bgp_debug_update(peer, prefix, NULL, 1))
3942 zlog_debug(
3943 "%pBP prefix %pFX has ORIGINATOR_ID, but it's accepted due to ACCEPT_OWN",
3944 peer, prefix);
3945
3946 /* Treat this route as imported, because it's leaked
3947 * already from another VRF, and we got an updated
3948 * version from route-reflector with ACCEPT_OWN
3949 * community.
3950 */
3951 *sub_type = BGP_ROUTE_IMPORTED;
3952
3953 return true;
3954 }
3955 }
3956
3957 return false;
3958 }
3959
3960 void bgp_update(struct peer *peer, const struct prefix *p, uint32_t addpath_id,
3961 struct attr *attr, afi_t afi, safi_t safi, int type,
3962 int sub_type, struct prefix_rd *prd, mpls_label_t *label,
3963 uint32_t num_labels, int soft_reconfig,
3964 struct bgp_route_evpn *evpn)
3965 {
3966 int ret;
3967 int aspath_loop_count = 0;
3968 struct bgp_dest *dest;
3969 struct bgp *bgp;
3970 struct attr new_attr;
3971 struct attr *attr_new;
3972 struct bgp_path_info *pi;
3973 struct bgp_path_info *new = NULL;
3974 struct bgp_path_info_extra *extra;
3975 const char *reason;
3976 char pfx_buf[BGP_PRD_PATH_STRLEN];
3977 int connected = 0;
3978 int do_loop_check = 1;
3979 int has_valid_label = 0;
3980 afi_t nh_afi;
3981 bool force_evpn_import = false;
3982 safi_t orig_safi = safi;
3983 bool leak_success = true;
3984 int allowas_in = 0;
3985
3986 if (frrtrace_enabled(frr_bgp, process_update)) {
3987 char pfxprint[PREFIX2STR_BUFFER];
3988
3989 prefix2str(p, pfxprint, sizeof(pfxprint));
3990 frrtrace(6, frr_bgp, process_update, peer, pfxprint, addpath_id,
3991 afi, safi, attr);
3992 }
3993
3994 #ifdef ENABLE_BGP_VNC
3995 int vnc_implicit_withdraw = 0;
3996 #endif
3997 int same_attr = 0;
3998 const struct prefix *bgp_nht_param_prefix;
3999
4000 /* Special case for BGP-LU - map LU safi to ordinary unicast safi */
4001 if (orig_safi == SAFI_LABELED_UNICAST)
4002 safi = SAFI_UNICAST;
4003
4004 memset(&new_attr, 0, sizeof(new_attr));
4005 new_attr.label_index = BGP_INVALID_LABEL_INDEX;
4006 new_attr.label = MPLS_INVALID_LABEL;
4007
4008 bgp = peer->bgp;
4009 dest = bgp_afi_node_get(bgp->rib[afi][safi], afi, safi, p, prd);
4010 /* TODO: Check to see if we can get rid of "is_valid_label" */
4011 if (afi == AFI_L2VPN && safi == SAFI_EVPN)
4012 has_valid_label = (num_labels > 0) ? 1 : 0;
4013 else
4014 has_valid_label = bgp_is_valid_label(label);
4015
4016 if (has_valid_label)
4017 assert(label != NULL);
4018
4019 /* Update overlay index of the attribute */
4020 if (afi == AFI_L2VPN && evpn)
4021 memcpy(&attr->evpn_overlay, evpn,
4022 sizeof(struct bgp_route_evpn));
4023
4024 /* When peer's soft reconfiguration enabled. Record input packet in
4025 Adj-RIBs-In. */
4026 if (!soft_reconfig
4027 && CHECK_FLAG(peer->af_flags[afi][safi], PEER_FLAG_SOFT_RECONFIG)
4028 && peer != bgp->peer_self)
4029 bgp_adj_in_set(dest, peer, attr, addpath_id);
4030
4031 /* Update permitted loop count */
4032 if (CHECK_FLAG(peer->af_flags[afi][safi], PEER_FLAG_ALLOWAS_IN))
4033 allowas_in = peer->allowas_in[afi][safi];
4034
4035 /* Check previously received route. */
4036 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next)
4037 if (pi->peer == peer && pi->type == type
4038 && pi->sub_type == sub_type
4039 && pi->addpath_rx_id == addpath_id)
4040 break;
4041
4042 /* AS path local-as loop check. */
4043 if (peer->change_local_as) {
4044 if (allowas_in)
4045 aspath_loop_count = allowas_in;
4046 else if (!CHECK_FLAG(peer->flags,
4047 PEER_FLAG_LOCAL_AS_NO_PREPEND))
4048 aspath_loop_count = 1;
4049
4050 if (aspath_loop_check(attr->aspath, peer->change_local_as)
4051 > aspath_loop_count) {
4052 peer->stat_pfx_aspath_loop++;
4053 reason = "as-path contains our own AS;";
4054 goto filtered;
4055 }
4056 }
4057
4058 /* If the peer is configured for "allowas-in origin" and the last ASN in
4059 * the
4060 * as-path is our ASN then we do not need to call aspath_loop_check
4061 */
4062 if (CHECK_FLAG(peer->af_flags[afi][safi], PEER_FLAG_ALLOWAS_IN_ORIGIN))
4063 if (aspath_get_last_as(attr->aspath) == bgp->as)
4064 do_loop_check = 0;
4065
4066 if (CHECK_FLAG(peer->af_flags[afi][safi], PEER_FLAG_REFLECTOR_CLIENT))
4067 bgp_nht_param_prefix = NULL;
4068 else
4069 bgp_nht_param_prefix = p;
4070
4071 /* AS path loop check. */
4072 if (do_loop_check) {
4073 if (aspath_loop_check(attr->aspath, bgp->as) >
4074 peer->allowas_in[afi][safi]) {
4075 peer->stat_pfx_aspath_loop++;
4076 reason = "as-path contains our own AS;";
4077 goto filtered;
4078 }
4079 }
4080
4081 /* If we're a CONFED we need to loop check the CONFED ID too */
4082 if (CHECK_FLAG(bgp->config, BGP_CONFIG_CONFEDERATION) && do_loop_check)
4083 if (aspath_loop_check_confed(attr->aspath, bgp->confed_id) >
4084 peer->allowas_in[afi][safi]) {
4085 peer->stat_pfx_aspath_loop++;
4086 reason = "as-path contains our own confed AS;";
4087 goto filtered;
4088 }
4089
4090 /* Route reflector originator ID check. If ACCEPT_OWN mechanism is
4091 * enabled, then take care of that too.
4092 */
4093 bool accept_own = false;
4094
4095 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID)
4096 && IPV4_ADDR_SAME(&bgp->router_id, &attr->originator_id)) {
4097 accept_own =
4098 bgp_accept_own(peer, afi, safi, attr, p, &sub_type);
4099 if (!accept_own) {
4100 peer->stat_pfx_originator_loop++;
4101 reason = "originator is us;";
4102 goto filtered;
4103 }
4104 }
4105
4106 /* Route reflector cluster ID check. */
4107 if (bgp_cluster_filter(peer, attr)) {
4108 peer->stat_pfx_cluster_loop++;
4109 reason = "reflected from the same cluster;";
4110 goto filtered;
4111 }
4112
4113 /* Apply incoming filter. */
4114 if (bgp_input_filter(peer, p, attr, afi, orig_safi) == FILTER_DENY) {
4115 peer->stat_pfx_filter++;
4116 reason = "filter;";
4117 goto filtered;
4118 }
4119
4120 /* RFC 8212 to prevent route leaks.
4121 * This specification intends to improve this situation by requiring the
4122 * explicit configuration of both BGP Import and Export Policies for any
4123 * External BGP (EBGP) session such as customers, peers, or
4124 * confederation boundaries for all enabled address families. Through
4125 * codification of the aforementioned requirement, operators will
4126 * benefit from consistent behavior across different BGP
4127 * implementations.
4128 */
4129 if (CHECK_FLAG(bgp->flags, BGP_FLAG_EBGP_REQUIRES_POLICY))
4130 if (!bgp_inbound_policy_exists(peer,
4131 &peer->filter[afi][safi])) {
4132 reason = "inbound policy missing";
4133 if (monotime_since(&bgp->ebgprequirespolicywarning,
4134 NULL) > FIFTEENMINUTE2USEC ||
4135 bgp->ebgprequirespolicywarning.tv_sec == 0) {
4136 zlog_warn(
4137 "EBGP inbound/outbound policy not properly setup, please configure in order for your peering to work correctly");
4138 monotime(&bgp->ebgprequirespolicywarning);
4139 }
4140 goto filtered;
4141 }
4142
4143 /* draft-ietf-idr-deprecate-as-set-confed-set
4144 * Filter routes having AS_SET or AS_CONFED_SET in the path.
4145 * Eventually, This document (if approved) updates RFC 4271
4146 * and RFC 5065 by eliminating AS_SET and AS_CONFED_SET types,
4147 * and obsoletes RFC 6472.
4148 */
4149 if (peer->bgp->reject_as_sets)
4150 if (aspath_check_as_sets(attr->aspath)) {
4151 reason =
4152 "as-path contains AS_SET or AS_CONFED_SET type;";
4153 goto filtered;
4154 }
4155
4156 new_attr = *attr;
4157
4158 /* Apply incoming route-map.
4159 * NB: new_attr may now contain newly allocated values from route-map
4160 * "set"
4161 * commands, so we need bgp_attr_flush in the error paths, until we
4162 * intern
4163 * the attr (which takes over the memory references) */
4164 if (bgp_input_modifier(peer, p, &new_attr, afi, orig_safi, NULL, label,
4165 num_labels, dest)
4166 == RMAP_DENY) {
4167 peer->stat_pfx_filter++;
4168 reason = "route-map;";
4169 bgp_attr_flush(&new_attr);
4170 goto filtered;
4171 }
4172
4173 if (pi && pi->attr->rmap_table_id != new_attr.rmap_table_id) {
4174 if (CHECK_FLAG(pi->flags, BGP_PATH_SELECTED))
4175 /* remove from RIB previous entry */
4176 bgp_zebra_withdraw(p, pi, bgp, safi);
4177 }
4178
4179 if (peer->sort == BGP_PEER_EBGP) {
4180
4181 /* rfc7999:
4182 * A BGP speaker receiving an announcement tagged with the
4183 * BLACKHOLE community SHOULD add the NO_ADVERTISE or
4184 * NO_EXPORT community as defined in RFC1997, or a
4185 * similar community, to prevent propagation of the
4186 * prefix outside the local AS. The community to prevent
4187 * propagation SHOULD be chosen according to the operator's
4188 * routing policy.
4189 */
4190 if (bgp_attr_get_community(&new_attr) &&
4191 community_include(bgp_attr_get_community(&new_attr),
4192 COMMUNITY_BLACKHOLE))
4193 bgp_attr_add_no_export_community(&new_attr);
4194
4195 /* If we receive the graceful-shutdown community from an eBGP
4196 * peer we must lower local-preference */
4197 if (bgp_attr_get_community(&new_attr) &&
4198 community_include(bgp_attr_get_community(&new_attr),
4199 COMMUNITY_GSHUT)) {
4200 new_attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF);
4201 new_attr.local_pref = BGP_GSHUT_LOCAL_PREF;
4202
4203 /* If graceful-shutdown is configured globally or
4204 * per neighbor, then add the GSHUT community to
4205 * all paths received from eBGP peers. */
4206 } else if (bgp_in_graceful_shutdown(peer->bgp) ||
4207 CHECK_FLAG(peer->flags, PEER_FLAG_GRACEFUL_SHUTDOWN))
4208 bgp_attr_add_gshut_community(&new_attr);
4209 }
4210
4211 /* next hop check. */
4212 if (!CHECK_FLAG(peer->flags, PEER_FLAG_IS_RFAPI_HD) &&
4213 bgp_update_martian_nexthop(bgp, afi, safi, type, sub_type,
4214 &new_attr, dest)) {
4215 peer->stat_pfx_nh_invalid++;
4216 reason = "martian or self next-hop;";
4217 bgp_attr_flush(&new_attr);
4218 goto filtered;
4219 }
4220
4221 if (bgp_mac_entry_exists(p) || bgp_mac_exist(&attr->rmac)) {
4222 peer->stat_pfx_nh_invalid++;
4223 reason = "self mac;";
4224 bgp_attr_flush(&new_attr);
4225 goto filtered;
4226 }
4227
4228 if (bgp_check_role_applicability(afi, safi) &&
4229 bgp_otc_filter(peer, &new_attr)) {
4230 reason = "failing otc validation";
4231 bgp_attr_flush(&new_attr);
4232 goto filtered;
4233 }
4234 /* The flag BGP_NODE_FIB_INSTALL_PENDING is for the following
4235 * condition :
4236 * Suppress fib is enabled
4237 * BGP_OPT_NO_FIB is not enabled
4238 * Route type is BGP_ROUTE_NORMAL (peer learnt routes)
4239 * Route is being installed first time (BGP_NODE_FIB_INSTALLED not set)
4240 */
4241 if (bgp_fibupd_safi(safi) && BGP_SUPPRESS_FIB_ENABLED(bgp)
4242 && (sub_type == BGP_ROUTE_NORMAL)
4243 && (!bgp_option_check(BGP_OPT_NO_FIB))
4244 && (!CHECK_FLAG(dest->flags, BGP_NODE_FIB_INSTALLED)))
4245 SET_FLAG(dest->flags, BGP_NODE_FIB_INSTALL_PENDING);
4246
4247 /* If neighbor soo is configured, tag all incoming routes with
4248 * this SoO tag and then filter out advertisements in
4249 * subgroup_announce_check() if it matches the configured SoO
4250 * on the other peer.
4251 */
4252 if (peer->soo[afi][safi]) {
4253 struct ecommunity *old_ecomm =
4254 bgp_attr_get_ecommunity(&new_attr);
4255 struct ecommunity *ecomm_soo = peer->soo[afi][safi];
4256 struct ecommunity *new_ecomm;
4257
4258 if (old_ecomm) {
4259 new_ecomm = ecommunity_merge(ecommunity_dup(old_ecomm),
4260 ecomm_soo);
4261
4262 if (!old_ecomm->refcnt)
4263 ecommunity_free(&old_ecomm);
4264 } else {
4265 new_ecomm = ecommunity_dup(ecomm_soo);
4266 }
4267
4268 bgp_attr_set_ecommunity(&new_attr, new_ecomm);
4269 }
4270
4271 attr_new = bgp_attr_intern(&new_attr);
4272
4273 /* If the update is implicit withdraw. */
4274 if (pi) {
4275 pi->uptime = monotime(NULL);
4276 same_attr = attrhash_cmp(pi->attr, attr_new);
4277
4278 hook_call(bgp_process, bgp, afi, safi, dest, peer, true);
4279
4280 /* Same attribute comes in. */
4281 if (!CHECK_FLAG(pi->flags, BGP_PATH_REMOVED)
4282 && same_attr
4283 && (!has_valid_label
4284 || memcmp(&(bgp_path_info_extra_get(pi))->label, label,
4285 num_labels * sizeof(mpls_label_t))
4286 == 0)) {
4287 if (CHECK_FLAG(bgp->af_flags[afi][safi],
4288 BGP_CONFIG_DAMPENING)
4289 && peer->sort == BGP_PEER_EBGP
4290 && CHECK_FLAG(pi->flags, BGP_PATH_HISTORY)) {
4291 if (bgp_debug_update(peer, p, NULL, 1)) {
4292 bgp_debug_rdpfxpath2str(
4293 afi, safi, prd, p, label,
4294 num_labels, addpath_id ? 1 : 0,
4295 addpath_id, evpn, pfx_buf,
4296 sizeof(pfx_buf));
4297 zlog_debug("%pBP rcvd %s", peer,
4298 pfx_buf);
4299 }
4300
4301 if (bgp_damp_update(pi, dest, afi, safi)
4302 != BGP_DAMP_SUPPRESSED) {
4303 bgp_aggregate_increment(bgp, p, pi, afi,
4304 safi);
4305 bgp_process(bgp, dest, afi, safi);
4306 }
4307 } else /* Duplicate - odd */
4308 {
4309 if (bgp_debug_update(peer, p, NULL, 1)) {
4310 if (!peer->rcvd_attr_printed) {
4311 zlog_debug(
4312 "%pBP rcvd UPDATE w/ attr: %s",
4313 peer,
4314 peer->rcvd_attr_str);
4315 peer->rcvd_attr_printed = 1;
4316 }
4317
4318 bgp_debug_rdpfxpath2str(
4319 afi, safi, prd, p, label,
4320 num_labels, addpath_id ? 1 : 0,
4321 addpath_id, evpn, pfx_buf,
4322 sizeof(pfx_buf));
4323 zlog_debug(
4324 "%pBP rcvd %s...duplicate ignored",
4325 peer, pfx_buf);
4326 }
4327
4328 /* graceful restart STALE flag unset. */
4329 if (CHECK_FLAG(pi->flags, BGP_PATH_STALE)) {
4330 bgp_path_info_unset_flag(
4331 dest, pi, BGP_PATH_STALE);
4332 bgp_dest_set_defer_flag(dest, false);
4333 bgp_process(bgp, dest, afi, safi);
4334 }
4335 }
4336
4337 bgp_dest_unlock_node(dest);
4338 bgp_attr_unintern(&attr_new);
4339
4340 return;
4341 }
4342
4343 /* Withdraw/Announce before we fully processed the withdraw */
4344 if (CHECK_FLAG(pi->flags, BGP_PATH_REMOVED)) {
4345 if (bgp_debug_update(peer, p, NULL, 1)) {
4346 bgp_debug_rdpfxpath2str(
4347 afi, safi, prd, p, label, num_labels,
4348 addpath_id ? 1 : 0, addpath_id, evpn,
4349 pfx_buf, sizeof(pfx_buf));
4350 zlog_debug(
4351 "%pBP rcvd %s, flapped quicker than processing",
4352 peer, pfx_buf);
4353 }
4354
4355 bgp_path_info_restore(dest, pi);
4356
4357 /*
4358 * If the BGP_PATH_REMOVED flag is set, then EVPN
4359 * routes would have been unimported already when a
4360 * prior BGP withdraw processing happened. Such routes
4361 * need to be imported again, so flag accordingly.
4362 */
4363 force_evpn_import = true;
4364 } else {
4365 /* implicit withdraw, decrement aggregate and pcount
4366 * here. only if update is accepted, they'll increment
4367 * below.
4368 */
4369 bgp_aggregate_decrement(bgp, p, pi, afi, safi);
4370 }
4371
4372 /* Received Logging. */
4373 if (bgp_debug_update(peer, p, NULL, 1)) {
4374 bgp_debug_rdpfxpath2str(afi, safi, prd, p, label,
4375 num_labels, addpath_id ? 1 : 0,
4376 addpath_id, evpn, pfx_buf,
4377 sizeof(pfx_buf));
4378 zlog_debug("%pBP rcvd %s", peer, pfx_buf);
4379 }
4380
4381 /* graceful restart STALE flag unset. */
4382 if (CHECK_FLAG(pi->flags, BGP_PATH_STALE)) {
4383 bgp_path_info_unset_flag(dest, pi, BGP_PATH_STALE);
4384 bgp_dest_set_defer_flag(dest, false);
4385 }
4386
4387 /* The attribute is changed. */
4388 bgp_path_info_set_flag(dest, pi, BGP_PATH_ATTR_CHANGED);
4389
4390 /* Update bgp route dampening information. */
4391 if (CHECK_FLAG(bgp->af_flags[afi][safi], BGP_CONFIG_DAMPENING)
4392 && peer->sort == BGP_PEER_EBGP) {
4393 /* This is implicit withdraw so we should update
4394 dampening
4395 information. */
4396 if (!CHECK_FLAG(pi->flags, BGP_PATH_HISTORY))
4397 bgp_damp_withdraw(pi, dest, afi, safi, 1);
4398 }
4399 #ifdef ENABLE_BGP_VNC
4400 if (safi == SAFI_MPLS_VPN) {
4401 struct bgp_dest *pdest = NULL;
4402 struct bgp_table *table = NULL;
4403
4404 pdest = bgp_node_get(bgp->rib[afi][safi],
4405 (struct prefix *)prd);
4406 if (bgp_dest_has_bgp_path_info_data(pdest)) {
4407 table = bgp_dest_get_bgp_table_info(pdest);
4408
4409 vnc_import_bgp_del_vnc_host_route_mode_resolve_nve(
4410 bgp, prd, table, p, pi);
4411 }
4412 bgp_dest_unlock_node(pdest);
4413 }
4414 if ((afi == AFI_IP || afi == AFI_IP6)
4415 && (safi == SAFI_UNICAST)) {
4416 if (CHECK_FLAG(pi->flags, BGP_PATH_SELECTED)) {
4417 /*
4418 * Implicit withdraw case.
4419 */
4420 ++vnc_implicit_withdraw;
4421 vnc_import_bgp_del_route(bgp, p, pi);
4422 vnc_import_bgp_exterior_del_route(bgp, p, pi);
4423 }
4424 }
4425 #endif
4426
4427 /* Special handling for EVPN update of an existing route. If the
4428 * extended community attribute has changed, we need to
4429 * un-import
4430 * the route using its existing extended community. It will be
4431 * subsequently processed for import with the new extended
4432 * community.
4433 */
4434 if (((safi == SAFI_EVPN) || (safi == SAFI_MPLS_VPN))
4435 && !same_attr) {
4436 if ((pi->attr->flag
4437 & ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES))
4438 && (attr_new->flag
4439 & ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES))) {
4440 int cmp;
4441
4442 cmp = ecommunity_cmp(
4443 bgp_attr_get_ecommunity(pi->attr),
4444 bgp_attr_get_ecommunity(attr_new));
4445 if (!cmp) {
4446 if (bgp_debug_update(peer, p, NULL, 1))
4447 zlog_debug(
4448 "Change in EXT-COMM, existing %s new %s",
4449 ecommunity_str(
4450 bgp_attr_get_ecommunity(
4451 pi->attr)),
4452 ecommunity_str(
4453 bgp_attr_get_ecommunity(
4454 attr_new)));
4455 if (safi == SAFI_EVPN)
4456 bgp_evpn_unimport_route(
4457 bgp, afi, safi, p, pi);
4458 else /* SAFI_MPLS_VPN */
4459 vpn_leak_to_vrf_withdraw(bgp,
4460 pi);
4461 }
4462 }
4463 }
4464
4465 /* Update to new attribute. */
4466 bgp_attr_unintern(&pi->attr);
4467 pi->attr = attr_new;
4468
4469 /* Update MPLS label */
4470 if (has_valid_label) {
4471 extra = bgp_path_info_extra_get(pi);
4472 if (extra->label != label) {
4473 memcpy(&extra->label, label,
4474 num_labels * sizeof(mpls_label_t));
4475 extra->num_labels = num_labels;
4476 }
4477 if (!(afi == AFI_L2VPN && safi == SAFI_EVPN))
4478 bgp_set_valid_label(&extra->label[0]);
4479 }
4480
4481 /* Update SRv6 SID */
4482 if (attr->srv6_l3vpn) {
4483 extra = bgp_path_info_extra_get(pi);
4484 if (sid_diff(&extra->sid[0].sid,
4485 &attr->srv6_l3vpn->sid)) {
4486 sid_copy(&extra->sid[0].sid,
4487 &attr->srv6_l3vpn->sid);
4488 extra->num_sids = 1;
4489
4490 extra->sid[0].loc_block_len = 0;
4491 extra->sid[0].loc_node_len = 0;
4492 extra->sid[0].func_len = 0;
4493 extra->sid[0].arg_len = 0;
4494 extra->sid[0].transposition_len = 0;
4495 extra->sid[0].transposition_offset = 0;
4496
4497 if (attr->srv6_l3vpn->loc_block_len != 0) {
4498 extra->sid[0].loc_block_len =
4499 attr->srv6_l3vpn->loc_block_len;
4500 extra->sid[0].loc_node_len =
4501 attr->srv6_l3vpn->loc_node_len;
4502 extra->sid[0].func_len =
4503 attr->srv6_l3vpn->func_len;
4504 extra->sid[0].arg_len =
4505 attr->srv6_l3vpn->arg_len;
4506 extra->sid[0].transposition_len =
4507 attr->srv6_l3vpn
4508 ->transposition_len;
4509 extra->sid[0].transposition_offset =
4510 attr->srv6_l3vpn
4511 ->transposition_offset;
4512 }
4513 }
4514 } else if (attr->srv6_vpn) {
4515 extra = bgp_path_info_extra_get(pi);
4516 if (sid_diff(&extra->sid[0].sid,
4517 &attr->srv6_vpn->sid)) {
4518 sid_copy(&extra->sid[0].sid,
4519 &attr->srv6_vpn->sid);
4520 extra->num_sids = 1;
4521 }
4522 }
4523
4524 #ifdef ENABLE_BGP_VNC
4525 if ((afi == AFI_IP || afi == AFI_IP6)
4526 && (safi == SAFI_UNICAST)) {
4527 if (vnc_implicit_withdraw) {
4528 /*
4529 * Add back the route with its new attributes
4530 * (e.g., nexthop).
4531 * The route is still selected, until the route
4532 * selection
4533 * queued by bgp_process actually runs. We have
4534 * to make this
4535 * update to the VNC side immediately to avoid
4536 * racing against
4537 * configuration changes (e.g., route-map
4538 * changes) which
4539 * trigger re-importation of the entire RIB.
4540 */
4541 vnc_import_bgp_add_route(bgp, p, pi);
4542 vnc_import_bgp_exterior_add_route(bgp, p, pi);
4543 }
4544 }
4545 #endif
4546
4547 /* Update bgp route dampening information. */
4548 if (CHECK_FLAG(bgp->af_flags[afi][safi], BGP_CONFIG_DAMPENING)
4549 && peer->sort == BGP_PEER_EBGP) {
4550 /* Now we do normal update dampening. */
4551 ret = bgp_damp_update(pi, dest, afi, safi);
4552 if (ret == BGP_DAMP_SUPPRESSED) {
4553 bgp_dest_unlock_node(dest);
4554 return;
4555 }
4556 }
4557
4558 /* Nexthop reachability check - for unicast and
4559 * labeled-unicast.. */
4560 if (((afi == AFI_IP || afi == AFI_IP6)
4561 && (safi == SAFI_UNICAST || safi == SAFI_LABELED_UNICAST))
4562 || (safi == SAFI_EVPN &&
4563 bgp_evpn_is_prefix_nht_supported(p))) {
4564 if (safi != SAFI_EVPN && peer->sort == BGP_PEER_EBGP
4565 && peer->ttl == BGP_DEFAULT_TTL
4566 && !CHECK_FLAG(peer->flags,
4567 PEER_FLAG_DISABLE_CONNECTED_CHECK)
4568 && !CHECK_FLAG(bgp->flags,
4569 BGP_FLAG_DISABLE_NH_CONNECTED_CHK))
4570 connected = 1;
4571 else
4572 connected = 0;
4573
4574 struct bgp *bgp_nexthop = bgp;
4575
4576 if (pi->extra && pi->extra->bgp_orig)
4577 bgp_nexthop = pi->extra->bgp_orig;
4578
4579 nh_afi = BGP_ATTR_NH_AFI(afi, pi->attr);
4580
4581 if (bgp_find_or_add_nexthop(bgp, bgp_nexthop, nh_afi,
4582 safi, pi, NULL, connected,
4583 bgp_nht_param_prefix) ||
4584 CHECK_FLAG(peer->flags, PEER_FLAG_IS_RFAPI_HD))
4585 bgp_path_info_set_flag(dest, pi,
4586 BGP_PATH_VALID);
4587 else {
4588 if (BGP_DEBUG(nht, NHT)) {
4589 zlog_debug("%s(%pI4): NH unresolved",
4590 __func__,
4591 (in_addr_t *)&attr_new->nexthop);
4592 }
4593 bgp_path_info_unset_flag(dest, pi,
4594 BGP_PATH_VALID);
4595 }
4596 } else {
4597 if (accept_own)
4598 bgp_path_info_set_flag(dest, pi,
4599 BGP_PATH_ACCEPT_OWN);
4600
4601 bgp_path_info_set_flag(dest, pi, BGP_PATH_VALID);
4602 }
4603
4604 #ifdef ENABLE_BGP_VNC
4605 if (safi == SAFI_MPLS_VPN) {
4606 struct bgp_dest *pdest = NULL;
4607 struct bgp_table *table = NULL;
4608
4609 pdest = bgp_node_get(bgp->rib[afi][safi],
4610 (struct prefix *)prd);
4611 if (bgp_dest_has_bgp_path_info_data(pdest)) {
4612 table = bgp_dest_get_bgp_table_info(pdest);
4613
4614 vnc_import_bgp_add_vnc_host_route_mode_resolve_nve(
4615 bgp, prd, table, p, pi);
4616 }
4617 bgp_dest_unlock_node(pdest);
4618 }
4619 #endif
4620
4621 /* If this is an EVPN route and some attribute has changed,
4622 * or we are explicitly told to perform a route import, process
4623 * route for import. If the extended community has changed, we
4624 * would
4625 * have done the un-import earlier and the import would result
4626 * in the
4627 * route getting injected into appropriate L2 VNIs. If it is
4628 * just
4629 * some other attribute change, the import will result in
4630 * updating
4631 * the attributes for the route in the VNI(s).
4632 */
4633 if (safi == SAFI_EVPN &&
4634 (!same_attr || force_evpn_import) &&
4635 CHECK_FLAG(pi->flags, BGP_PATH_VALID))
4636 bgp_evpn_import_route(bgp, afi, safi, p, pi);
4637
4638 /* Process change. */
4639 bgp_aggregate_increment(bgp, p, pi, afi, safi);
4640
4641 bgp_process(bgp, dest, afi, safi);
4642 bgp_dest_unlock_node(dest);
4643
4644 if (SAFI_UNICAST == safi
4645 && (bgp->inst_type == BGP_INSTANCE_TYPE_VRF
4646 || bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
4647
4648 vpn_leak_from_vrf_update(bgp_get_default(), bgp, pi);
4649 }
4650 if ((SAFI_MPLS_VPN == safi)
4651 && (bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
4652 leak_success = vpn_leak_to_vrf_update(bgp, pi, prd);
4653 }
4654
4655 #ifdef ENABLE_BGP_VNC
4656 if (SAFI_MPLS_VPN == safi) {
4657 mpls_label_t label_decoded = decode_label(label);
4658
4659 rfapiProcessUpdate(peer, NULL, p, prd, attr, afi, safi,
4660 type, sub_type, &label_decoded);
4661 }
4662 if (SAFI_ENCAP == safi) {
4663 rfapiProcessUpdate(peer, NULL, p, prd, attr, afi, safi,
4664 type, sub_type, NULL);
4665 }
4666 #endif
4667 if ((safi == SAFI_MPLS_VPN) &&
4668 !CHECK_FLAG(bgp->af_flags[afi][safi],
4669 BGP_VPNVX_RETAIN_ROUTE_TARGET_ALL) &&
4670 !leak_success) {
4671 bgp_unlink_nexthop(pi);
4672 bgp_path_info_delete(dest, pi);
4673 }
4674 return;
4675 } // End of implicit withdraw
4676
4677 /* Received Logging. */
4678 if (bgp_debug_update(peer, p, NULL, 1)) {
4679 if (!peer->rcvd_attr_printed) {
4680 zlog_debug("%pBP rcvd UPDATE w/ attr: %s", peer,
4681 peer->rcvd_attr_str);
4682 peer->rcvd_attr_printed = 1;
4683 }
4684
4685 bgp_debug_rdpfxpath2str(afi, safi, prd, p, label, num_labels,
4686 addpath_id ? 1 : 0, addpath_id, evpn,
4687 pfx_buf, sizeof(pfx_buf));
4688 zlog_debug("%pBP rcvd %s", peer, pfx_buf);
4689 }
4690
4691 /* Make new BGP info. */
4692 new = info_make(type, sub_type, 0, peer, attr_new, dest);
4693
4694 /* Update MPLS label */
4695 if (has_valid_label) {
4696 extra = bgp_path_info_extra_get(new);
4697 if (extra->label != label) {
4698 memcpy(&extra->label, label,
4699 num_labels * sizeof(mpls_label_t));
4700 extra->num_labels = num_labels;
4701 }
4702 if (!(afi == AFI_L2VPN && safi == SAFI_EVPN))
4703 bgp_set_valid_label(&extra->label[0]);
4704 }
4705
4706 /* Update SRv6 SID */
4707 if (safi == SAFI_MPLS_VPN) {
4708 extra = bgp_path_info_extra_get(new);
4709 if (attr->srv6_l3vpn) {
4710 sid_copy(&extra->sid[0].sid, &attr->srv6_l3vpn->sid);
4711 extra->num_sids = 1;
4712
4713 extra->sid[0].loc_block_len =
4714 attr->srv6_l3vpn->loc_block_len;
4715 extra->sid[0].loc_node_len =
4716 attr->srv6_l3vpn->loc_node_len;
4717 extra->sid[0].func_len = attr->srv6_l3vpn->func_len;
4718 extra->sid[0].arg_len = attr->srv6_l3vpn->arg_len;
4719 extra->sid[0].transposition_len =
4720 attr->srv6_l3vpn->transposition_len;
4721 extra->sid[0].transposition_offset =
4722 attr->srv6_l3vpn->transposition_offset;
4723 } else if (attr->srv6_vpn) {
4724 sid_copy(&extra->sid[0].sid, &attr->srv6_vpn->sid);
4725 extra->num_sids = 1;
4726 }
4727 }
4728
4729 /* Nexthop reachability check. */
4730 if (((afi == AFI_IP || afi == AFI_IP6)
4731 && (safi == SAFI_UNICAST || safi == SAFI_LABELED_UNICAST))
4732 || (safi == SAFI_EVPN && bgp_evpn_is_prefix_nht_supported(p))) {
4733 if (safi != SAFI_EVPN && peer->sort == BGP_PEER_EBGP
4734 && peer->ttl == BGP_DEFAULT_TTL
4735 && !CHECK_FLAG(peer->flags,
4736 PEER_FLAG_DISABLE_CONNECTED_CHECK)
4737 && !CHECK_FLAG(bgp->flags,
4738 BGP_FLAG_DISABLE_NH_CONNECTED_CHK))
4739 connected = 1;
4740 else
4741 connected = 0;
4742
4743 nh_afi = BGP_ATTR_NH_AFI(afi, new->attr);
4744
4745 if (bgp_find_or_add_nexthop(bgp, bgp, nh_afi, safi, new, NULL,
4746 connected, bgp_nht_param_prefix) ||
4747 CHECK_FLAG(peer->flags, PEER_FLAG_IS_RFAPI_HD))
4748 bgp_path_info_set_flag(dest, new, BGP_PATH_VALID);
4749 else {
4750 if (BGP_DEBUG(nht, NHT))
4751 zlog_debug("%s(%pI4): NH unresolved", __func__,
4752 &attr_new->nexthop);
4753 bgp_path_info_unset_flag(dest, new, BGP_PATH_VALID);
4754 }
4755 } else {
4756 if (accept_own)
4757 bgp_path_info_set_flag(dest, new, BGP_PATH_ACCEPT_OWN);
4758
4759 bgp_path_info_set_flag(dest, new, BGP_PATH_VALID);
4760 }
4761
4762 /* If maximum prefix count is configured and current prefix
4763 * count exeed it.
4764 */
4765 if (bgp_maximum_prefix_overflow(peer, afi, safi, 0)) {
4766 reason = "maximum-prefix overflow";
4767 bgp_attr_flush(&new_attr);
4768 goto filtered;
4769 }
4770
4771 /* Addpath ID */
4772 new->addpath_rx_id = addpath_id;
4773
4774 /* Increment prefix */
4775 bgp_aggregate_increment(bgp, p, new, afi, safi);
4776
4777 /* Register new BGP information. */
4778 bgp_path_info_add(dest, new);
4779
4780 /* route_node_get lock */
4781 bgp_dest_unlock_node(dest);
4782
4783 #ifdef ENABLE_BGP_VNC
4784 if (safi == SAFI_MPLS_VPN) {
4785 struct bgp_dest *pdest = NULL;
4786 struct bgp_table *table = NULL;
4787
4788 pdest = bgp_node_get(bgp->rib[afi][safi], (struct prefix *)prd);
4789 if (bgp_dest_has_bgp_path_info_data(pdest)) {
4790 table = bgp_dest_get_bgp_table_info(pdest);
4791
4792 vnc_import_bgp_add_vnc_host_route_mode_resolve_nve(
4793 bgp, prd, table, p, new);
4794 }
4795 bgp_dest_unlock_node(pdest);
4796 }
4797 #endif
4798
4799 /* If this is an EVPN route, process for import. */
4800 if (safi == SAFI_EVPN && CHECK_FLAG(new->flags, BGP_PATH_VALID))
4801 bgp_evpn_import_route(bgp, afi, safi, p, new);
4802
4803 hook_call(bgp_process, bgp, afi, safi, dest, peer, false);
4804
4805 /* Process change. */
4806 bgp_process(bgp, dest, afi, safi);
4807
4808 if (SAFI_UNICAST == safi
4809 && (bgp->inst_type == BGP_INSTANCE_TYPE_VRF
4810 || bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
4811 vpn_leak_from_vrf_update(bgp_get_default(), bgp, new);
4812 }
4813 if ((SAFI_MPLS_VPN == safi)
4814 && (bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
4815 leak_success = vpn_leak_to_vrf_update(bgp, new, prd);
4816 }
4817 #ifdef ENABLE_BGP_VNC
4818 if (SAFI_MPLS_VPN == safi) {
4819 mpls_label_t label_decoded = decode_label(label);
4820
4821 rfapiProcessUpdate(peer, NULL, p, prd, attr, afi, safi, type,
4822 sub_type, &label_decoded);
4823 }
4824 if (SAFI_ENCAP == safi) {
4825 rfapiProcessUpdate(peer, NULL, p, prd, attr, afi, safi, type,
4826 sub_type, NULL);
4827 }
4828 #endif
4829 if ((safi == SAFI_MPLS_VPN) &&
4830 !CHECK_FLAG(bgp->af_flags[afi][safi],
4831 BGP_VPNVX_RETAIN_ROUTE_TARGET_ALL) &&
4832 !leak_success) {
4833 bgp_unlink_nexthop(new);
4834 bgp_path_info_delete(dest, new);
4835 }
4836
4837 return;
4838
4839 /* This BGP update is filtered. Log the reason then update BGP
4840 entry. */
4841 filtered:
4842 if (new) {
4843 bgp_unlink_nexthop(new);
4844 bgp_path_info_delete(dest, new);
4845 bgp_path_info_extra_free(&new->extra);
4846 XFREE(MTYPE_BGP_ROUTE, new);
4847 }
4848
4849 hook_call(bgp_process, bgp, afi, safi, dest, peer, true);
4850
4851 if (bgp_debug_update(peer, p, NULL, 1)) {
4852 if (!peer->rcvd_attr_printed) {
4853 zlog_debug("%pBP rcvd UPDATE w/ attr: %s", peer,
4854 peer->rcvd_attr_str);
4855 peer->rcvd_attr_printed = 1;
4856 }
4857
4858 bgp_debug_rdpfxpath2str(afi, safi, prd, p, label, num_labels,
4859 addpath_id ? 1 : 0, addpath_id, evpn,
4860 pfx_buf, sizeof(pfx_buf));
4861 zlog_debug("%pBP rcvd UPDATE about %s -- DENIED due to: %s",
4862 peer, pfx_buf, reason);
4863 }
4864
4865 if (pi) {
4866 /* If this is an EVPN route, un-import it as it is now filtered.
4867 */
4868 if (safi == SAFI_EVPN)
4869 bgp_evpn_unimport_route(bgp, afi, safi, p, pi);
4870
4871 if (SAFI_UNICAST == safi
4872 && (bgp->inst_type == BGP_INSTANCE_TYPE_VRF
4873 || bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
4874
4875 vpn_leak_from_vrf_withdraw(bgp_get_default(), bgp, pi);
4876 }
4877 if ((SAFI_MPLS_VPN == safi)
4878 && (bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
4879
4880 vpn_leak_to_vrf_withdraw(bgp, pi);
4881 }
4882
4883 bgp_rib_remove(dest, pi, peer, afi, safi);
4884 }
4885
4886 bgp_dest_unlock_node(dest);
4887
4888 #ifdef ENABLE_BGP_VNC
4889 /*
4890 * Filtered update is treated as an implicit withdrawal (see
4891 * bgp_rib_remove()
4892 * a few lines above)
4893 */
4894 if ((SAFI_MPLS_VPN == safi) || (SAFI_ENCAP == safi)) {
4895 rfapiProcessWithdraw(peer, NULL, p, prd, NULL, afi, safi, type,
4896 0);
4897 }
4898 #endif
4899
4900 return;
4901 }
4902
4903 void bgp_withdraw(struct peer *peer, const struct prefix *p,
4904 uint32_t addpath_id, struct attr *attr, afi_t afi,
4905 safi_t safi, int type, int sub_type, struct prefix_rd *prd,
4906 mpls_label_t *label, uint32_t num_labels,
4907 struct bgp_route_evpn *evpn)
4908 {
4909 struct bgp *bgp;
4910 char pfx_buf[BGP_PRD_PATH_STRLEN];
4911 struct bgp_dest *dest;
4912 struct bgp_path_info *pi;
4913
4914 #ifdef ENABLE_BGP_VNC
4915 if ((SAFI_MPLS_VPN == safi) || (SAFI_ENCAP == safi)) {
4916 rfapiProcessWithdraw(peer, NULL, p, prd, NULL, afi, safi, type,
4917 0);
4918 }
4919 #endif
4920
4921 bgp = peer->bgp;
4922
4923 /* Lookup node. */
4924 dest = bgp_afi_node_get(bgp->rib[afi][safi], afi, safi, p, prd);
4925
4926 /* If peer is soft reconfiguration enabled. Record input packet for
4927 * further calculation.
4928 *
4929 * Cisco IOS 12.4(24)T4 on session establishment sends withdraws for all
4930 * routes that are filtered. This tanks out Quagga RS pretty badly due
4931 * to
4932 * the iteration over all RS clients.
4933 * Since we need to remove the entry from adj_in anyway, do that first
4934 * and
4935 * if there was no entry, we don't need to do anything more.
4936 */
4937 if (CHECK_FLAG(peer->af_flags[afi][safi], PEER_FLAG_SOFT_RECONFIG)
4938 && peer != bgp->peer_self)
4939 if (!bgp_adj_in_unset(dest, peer, addpath_id)) {
4940 peer->stat_pfx_dup_withdraw++;
4941
4942 if (bgp_debug_update(peer, p, NULL, 1)) {
4943 bgp_debug_rdpfxpath2str(
4944 afi, safi, prd, p, label, num_labels,
4945 addpath_id ? 1 : 0, addpath_id, NULL,
4946 pfx_buf, sizeof(pfx_buf));
4947 zlog_debug(
4948 "%s withdrawing route %s not in adj-in",
4949 peer->host, pfx_buf);
4950 }
4951 bgp_dest_unlock_node(dest);
4952 return;
4953 }
4954
4955 /* Lookup withdrawn route. */
4956 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next)
4957 if (pi->peer == peer && pi->type == type
4958 && pi->sub_type == sub_type
4959 && pi->addpath_rx_id == addpath_id)
4960 break;
4961
4962 /* Logging. */
4963 if (bgp_debug_update(peer, p, NULL, 1)) {
4964 bgp_debug_rdpfxpath2str(afi, safi, prd, p, label, num_labels,
4965 addpath_id ? 1 : 0, addpath_id, NULL,
4966 pfx_buf, sizeof(pfx_buf));
4967 zlog_debug("%pBP rcvd UPDATE about %s -- withdrawn", peer,
4968 pfx_buf);
4969 }
4970
4971 /* Withdraw specified route from routing table. */
4972 if (pi && !CHECK_FLAG(pi->flags, BGP_PATH_HISTORY)) {
4973 bgp_rib_withdraw(dest, pi, peer, afi, safi, prd);
4974 if (SAFI_UNICAST == safi
4975 && (bgp->inst_type == BGP_INSTANCE_TYPE_VRF
4976 || bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
4977 vpn_leak_from_vrf_withdraw(bgp_get_default(), bgp, pi);
4978 }
4979 if ((SAFI_MPLS_VPN == safi)
4980 && (bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
4981
4982 vpn_leak_to_vrf_withdraw(bgp, pi);
4983 }
4984 } else if (bgp_debug_update(peer, p, NULL, 1)) {
4985 bgp_debug_rdpfxpath2str(afi, safi, prd, p, label, num_labels,
4986 addpath_id ? 1 : 0, addpath_id, NULL,
4987 pfx_buf, sizeof(pfx_buf));
4988 zlog_debug("%s Can't find the route %s", peer->host, pfx_buf);
4989 }
4990
4991 /* Unlock bgp_node_get() lock. */
4992 bgp_dest_unlock_node(dest);
4993
4994 return;
4995 }
4996
4997 void bgp_default_originate(struct peer *peer, afi_t afi, safi_t safi,
4998 int withdraw)
4999 {
5000 struct update_subgroup *subgrp;
5001 subgrp = peer_subgroup(peer, afi, safi);
5002 subgroup_default_originate(subgrp, withdraw);
5003 }
5004
5005
5006 /*
5007 * bgp_stop_announce_route_timer
5008 */
5009 void bgp_stop_announce_route_timer(struct peer_af *paf)
5010 {
5011 if (!paf->t_announce_route)
5012 return;
5013
5014 THREAD_OFF(paf->t_announce_route);
5015 }
5016
5017 /*
5018 * bgp_announce_route_timer_expired
5019 *
5020 * Callback that is invoked when the route announcement timer for a
5021 * peer_af expires.
5022 */
5023 static void bgp_announce_route_timer_expired(struct thread *t)
5024 {
5025 struct peer_af *paf;
5026 struct peer *peer;
5027
5028 paf = THREAD_ARG(t);
5029 peer = paf->peer;
5030
5031 if (!peer_established(peer))
5032 return;
5033
5034 if (!peer->afc_nego[paf->afi][paf->safi])
5035 return;
5036
5037 peer_af_announce_route(paf, 1);
5038
5039 /* Notify BGP conditional advertisement scanner percess */
5040 peer->advmap_config_change[paf->afi][paf->safi] = true;
5041 }
5042
5043 /*
5044 * bgp_announce_route
5045 *
5046 * *Triggers* announcement of routes of a given AFI/SAFI to a peer.
5047 *
5048 * if force is true we will force an update even if the update
5049 * limiting code is attempted to kick in.
5050 */
5051 void bgp_announce_route(struct peer *peer, afi_t afi, safi_t safi, bool force)
5052 {
5053 struct peer_af *paf;
5054 struct update_subgroup *subgrp;
5055
5056 paf = peer_af_find(peer, afi, safi);
5057 if (!paf)
5058 return;
5059 subgrp = PAF_SUBGRP(paf);
5060
5061 /*
5062 * Ignore if subgroup doesn't exist (implies AF is not negotiated)
5063 * or a refresh has already been triggered.
5064 */
5065 if (!subgrp || paf->t_announce_route)
5066 return;
5067
5068 if (force)
5069 SET_FLAG(subgrp->sflags, SUBGRP_STATUS_FORCE_UPDATES);
5070
5071 /*
5072 * Start a timer to stagger/delay the announce. This serves
5073 * two purposes - announcement can potentially be combined for
5074 * multiple peers and the announcement doesn't happen in the
5075 * vty context.
5076 */
5077 thread_add_timer_msec(bm->master, bgp_announce_route_timer_expired, paf,
5078 (subgrp->peer_count == 1)
5079 ? BGP_ANNOUNCE_ROUTE_SHORT_DELAY_MS
5080 : BGP_ANNOUNCE_ROUTE_DELAY_MS,
5081 &paf->t_announce_route);
5082 }
5083
5084 /*
5085 * Announce routes from all AF tables to a peer.
5086 *
5087 * This should ONLY be called when there is a need to refresh the
5088 * routes to the peer based on a policy change for this peer alone
5089 * or a route refresh request received from the peer.
5090 * The operation will result in splitting the peer from its existing
5091 * subgroups and putting it in new subgroups.
5092 */
5093 void bgp_announce_route_all(struct peer *peer)
5094 {
5095 afi_t afi;
5096 safi_t safi;
5097
5098 FOREACH_AFI_SAFI (afi, safi)
5099 bgp_announce_route(peer, afi, safi, false);
5100 }
5101
5102 /* Flag or unflag bgp_dest to determine whether it should be treated by
5103 * bgp_soft_reconfig_table_task.
5104 * Flag if flag is true. Unflag if flag is false.
5105 */
5106 static void bgp_soft_reconfig_table_flag(struct bgp_table *table, bool flag)
5107 {
5108 struct bgp_dest *dest;
5109 struct bgp_adj_in *ain;
5110
5111 if (!table)
5112 return;
5113
5114 for (dest = bgp_table_top(table); dest; dest = bgp_route_next(dest)) {
5115 for (ain = dest->adj_in; ain; ain = ain->next) {
5116 if (ain->peer != NULL)
5117 break;
5118 }
5119 if (flag && ain != NULL && ain->peer != NULL)
5120 SET_FLAG(dest->flags, BGP_NODE_SOFT_RECONFIG);
5121 else
5122 UNSET_FLAG(dest->flags, BGP_NODE_SOFT_RECONFIG);
5123 }
5124 }
5125
5126 static void bgp_soft_reconfig_table_update(struct peer *peer,
5127 struct bgp_dest *dest,
5128 struct bgp_adj_in *ain, afi_t afi,
5129 safi_t safi, struct prefix_rd *prd)
5130 {
5131 struct bgp_path_info *pi;
5132 uint32_t num_labels = 0;
5133 mpls_label_t *label_pnt = NULL;
5134 struct bgp_route_evpn evpn;
5135
5136 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next)
5137 if (pi->peer == peer)
5138 break;
5139
5140 if (pi && pi->extra)
5141 num_labels = pi->extra->num_labels;
5142 if (num_labels)
5143 label_pnt = &pi->extra->label[0];
5144 if (pi)
5145 memcpy(&evpn, bgp_attr_get_evpn_overlay(pi->attr),
5146 sizeof(evpn));
5147 else
5148 memset(&evpn, 0, sizeof(evpn));
5149
5150 bgp_update(peer, bgp_dest_get_prefix(dest), ain->addpath_rx_id,
5151 ain->attr, afi, safi, ZEBRA_ROUTE_BGP, BGP_ROUTE_NORMAL, prd,
5152 label_pnt, num_labels, 1, &evpn);
5153 }
5154
5155 static void bgp_soft_reconfig_table(struct peer *peer, afi_t afi, safi_t safi,
5156 struct bgp_table *table,
5157 struct prefix_rd *prd)
5158 {
5159 struct bgp_dest *dest;
5160 struct bgp_adj_in *ain;
5161
5162 if (!table)
5163 table = peer->bgp->rib[afi][safi];
5164
5165 for (dest = bgp_table_top(table); dest; dest = bgp_route_next(dest))
5166 for (ain = dest->adj_in; ain; ain = ain->next) {
5167 if (ain->peer != peer)
5168 continue;
5169
5170 bgp_soft_reconfig_table_update(peer, dest, ain, afi,
5171 safi, prd);
5172 }
5173 }
5174
5175 /* Do soft reconfig table per bgp table.
5176 * Walk on SOFT_RECONFIG_TASK_MAX_PREFIX bgp_dest,
5177 * when BGP_NODE_SOFT_RECONFIG is set,
5178 * reconfig bgp_dest for list of table->soft_reconfig_peers peers.
5179 * Schedule a new thread to continue the job.
5180 * Without splitting the full job into several part,
5181 * vtysh waits for the job to finish before responding to a BGP command
5182 */
5183 static void bgp_soft_reconfig_table_task(struct thread *thread)
5184 {
5185 uint32_t iter, max_iter;
5186 struct bgp_dest *dest;
5187 struct bgp_adj_in *ain;
5188 struct peer *peer;
5189 struct bgp_table *table;
5190 struct prefix_rd *prd;
5191 struct listnode *node, *nnode;
5192
5193 table = THREAD_ARG(thread);
5194 prd = NULL;
5195
5196 max_iter = SOFT_RECONFIG_TASK_MAX_PREFIX;
5197 if (table->soft_reconfig_init) {
5198 /* first call of the function with a new srta structure.
5199 * Don't do any treatment this time on nodes
5200 * in order vtysh to respond quickly
5201 */
5202 max_iter = 0;
5203 }
5204
5205 for (iter = 0, dest = bgp_table_top(table); (dest && iter < max_iter);
5206 dest = bgp_route_next(dest)) {
5207 if (!CHECK_FLAG(dest->flags, BGP_NODE_SOFT_RECONFIG))
5208 continue;
5209
5210 UNSET_FLAG(dest->flags, BGP_NODE_SOFT_RECONFIG);
5211
5212 for (ain = dest->adj_in; ain; ain = ain->next) {
5213 for (ALL_LIST_ELEMENTS(table->soft_reconfig_peers, node,
5214 nnode, peer)) {
5215 if (ain->peer != peer)
5216 continue;
5217
5218 bgp_soft_reconfig_table_update(
5219 peer, dest, ain, table->afi,
5220 table->safi, prd);
5221 iter++;
5222 }
5223 }
5224 }
5225
5226 /* we're either starting the initial iteration,
5227 * or we're going to continue an ongoing iteration
5228 */
5229 if (dest || table->soft_reconfig_init) {
5230 table->soft_reconfig_init = false;
5231 thread_add_event(bm->master, bgp_soft_reconfig_table_task,
5232 table, 0, &table->soft_reconfig_thread);
5233 return;
5234 }
5235 /* we're done, clean up the background iteration context info and
5236 schedule route annoucement
5237 */
5238 for (ALL_LIST_ELEMENTS(table->soft_reconfig_peers, node, nnode, peer)) {
5239 listnode_delete(table->soft_reconfig_peers, peer);
5240 bgp_announce_route(peer, table->afi, table->safi, false);
5241 }
5242
5243 list_delete(&table->soft_reconfig_peers);
5244 }
5245
5246
5247 /* Cancel soft_reconfig_table task matching bgp instance, bgp_table
5248 * and peer.
5249 * - bgp cannot be NULL
5250 * - if table and peer are NULL, cancel all threads within the bgp instance
5251 * - if table is NULL and peer is not,
5252 * remove peer in all threads within the bgp instance
5253 * - if peer is NULL, cancel all threads matching table within the bgp instance
5254 */
5255 void bgp_soft_reconfig_table_task_cancel(const struct bgp *bgp,
5256 const struct bgp_table *table,
5257 const struct peer *peer)
5258 {
5259 struct peer *npeer;
5260 struct listnode *node, *nnode;
5261 int afi, safi;
5262 struct bgp_table *ntable;
5263
5264 if (!bgp)
5265 return;
5266
5267 FOREACH_AFI_SAFI (afi, safi) {
5268 ntable = bgp->rib[afi][safi];
5269 if (!ntable)
5270 continue;
5271 if (table && table != ntable)
5272 continue;
5273
5274 for (ALL_LIST_ELEMENTS(ntable->soft_reconfig_peers, node, nnode,
5275 npeer)) {
5276 if (peer && peer != npeer)
5277 continue;
5278 listnode_delete(ntable->soft_reconfig_peers, npeer);
5279 }
5280
5281 if (!ntable->soft_reconfig_peers
5282 || !list_isempty(ntable->soft_reconfig_peers))
5283 continue;
5284
5285 list_delete(&ntable->soft_reconfig_peers);
5286 bgp_soft_reconfig_table_flag(ntable, false);
5287 THREAD_OFF(ntable->soft_reconfig_thread);
5288 }
5289 }
5290
5291 /*
5292 * Returns false if the peer is not configured for soft reconfig in
5293 */
5294 bool bgp_soft_reconfig_in(struct peer *peer, afi_t afi, safi_t safi)
5295 {
5296 struct bgp_dest *dest;
5297 struct bgp_table *table;
5298 struct listnode *node, *nnode;
5299 struct peer *npeer;
5300 struct peer_af *paf;
5301
5302 if (!CHECK_FLAG(peer->af_flags[afi][safi], PEER_FLAG_SOFT_RECONFIG))
5303 return false;
5304
5305 if ((safi != SAFI_MPLS_VPN) && (safi != SAFI_ENCAP)
5306 && (safi != SAFI_EVPN)) {
5307 table = peer->bgp->rib[afi][safi];
5308 if (!table)
5309 return true;
5310
5311 table->soft_reconfig_init = true;
5312
5313 if (!table->soft_reconfig_peers)
5314 table->soft_reconfig_peers = list_new();
5315 npeer = NULL;
5316 /* add peer to the table soft_reconfig_peers if not already
5317 * there
5318 */
5319 for (ALL_LIST_ELEMENTS(table->soft_reconfig_peers, node, nnode,
5320 npeer)) {
5321 if (peer == npeer)
5322 break;
5323 }
5324 if (peer != npeer)
5325 listnode_add(table->soft_reconfig_peers, peer);
5326
5327 /* (re)flag all bgp_dest in table. Existing soft_reconfig_in job
5328 * on table would start back at the beginning.
5329 */
5330 bgp_soft_reconfig_table_flag(table, true);
5331
5332 if (!table->soft_reconfig_thread)
5333 thread_add_event(bm->master,
5334 bgp_soft_reconfig_table_task, table, 0,
5335 &table->soft_reconfig_thread);
5336 /* Cancel bgp_announce_route_timer_expired threads.
5337 * bgp_announce_route_timer_expired threads have been scheduled
5338 * to announce routes as soon as the soft_reconfigure process
5339 * finishes.
5340 * In this case, soft_reconfigure is also scheduled by using
5341 * a thread but is planned after the
5342 * bgp_announce_route_timer_expired threads. It means that,
5343 * without cancelling the threads, the route announcement task
5344 * would run before the soft reconfiguration one. That would
5345 * useless and would block vtysh during several seconds. Route
5346 * announcements are rescheduled as soon as the soft_reconfigure
5347 * process finishes.
5348 */
5349 paf = peer_af_find(peer, afi, safi);
5350 if (paf)
5351 bgp_stop_announce_route_timer(paf);
5352 } else
5353 for (dest = bgp_table_top(peer->bgp->rib[afi][safi]); dest;
5354 dest = bgp_route_next(dest)) {
5355 table = bgp_dest_get_bgp_table_info(dest);
5356
5357 if (table == NULL)
5358 continue;
5359
5360 const struct prefix *p = bgp_dest_get_prefix(dest);
5361 struct prefix_rd prd;
5362
5363 prd.family = AF_UNSPEC;
5364 prd.prefixlen = 64;
5365 memcpy(&prd.val, p->u.val, 8);
5366
5367 bgp_soft_reconfig_table(peer, afi, safi, table, &prd);
5368 }
5369
5370 return true;
5371 }
5372
5373
5374 struct bgp_clear_node_queue {
5375 struct bgp_dest *dest;
5376 };
5377
5378 static wq_item_status bgp_clear_route_node(struct work_queue *wq, void *data)
5379 {
5380 struct bgp_clear_node_queue *cnq = data;
5381 struct bgp_dest *dest = cnq->dest;
5382 struct peer *peer = wq->spec.data;
5383 struct bgp_path_info *pi;
5384 struct bgp *bgp;
5385 afi_t afi = bgp_dest_table(dest)->afi;
5386 safi_t safi = bgp_dest_table(dest)->safi;
5387
5388 assert(dest && peer);
5389 bgp = peer->bgp;
5390
5391 /* It is possible that we have multiple paths for a prefix from a peer
5392 * if that peer is using AddPath.
5393 */
5394 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next) {
5395 if (pi->peer != peer)
5396 continue;
5397
5398 /* graceful restart STALE flag set. */
5399 if (((CHECK_FLAG(peer->sflags, PEER_STATUS_NSF_WAIT)
5400 && peer->nsf[afi][safi])
5401 || CHECK_FLAG(peer->af_sflags[afi][safi],
5402 PEER_STATUS_ENHANCED_REFRESH))
5403 && !CHECK_FLAG(pi->flags, BGP_PATH_STALE)
5404 && !CHECK_FLAG(pi->flags, BGP_PATH_UNUSEABLE))
5405 bgp_path_info_set_flag(dest, pi, BGP_PATH_STALE);
5406 else {
5407 /* If this is an EVPN route, process for
5408 * un-import. */
5409 if (safi == SAFI_EVPN)
5410 bgp_evpn_unimport_route(
5411 bgp, afi, safi,
5412 bgp_dest_get_prefix(dest), pi);
5413 /* Handle withdraw for VRF route-leaking and L3VPN */
5414 if (SAFI_UNICAST == safi
5415 && (bgp->inst_type == BGP_INSTANCE_TYPE_VRF ||
5416 bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
5417 vpn_leak_from_vrf_withdraw(bgp_get_default(),
5418 bgp, pi);
5419 }
5420 if (SAFI_MPLS_VPN == safi &&
5421 bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT) {
5422 vpn_leak_to_vrf_withdraw(bgp, pi);
5423 }
5424
5425 bgp_rib_remove(dest, pi, peer, afi, safi);
5426 }
5427 }
5428 return WQ_SUCCESS;
5429 }
5430
5431 static void bgp_clear_node_queue_del(struct work_queue *wq, void *data)
5432 {
5433 struct bgp_clear_node_queue *cnq = data;
5434 struct bgp_dest *dest = cnq->dest;
5435 struct bgp_table *table = bgp_dest_table(dest);
5436
5437 bgp_dest_unlock_node(dest);
5438 bgp_table_unlock(table);
5439 XFREE(MTYPE_BGP_CLEAR_NODE_QUEUE, cnq);
5440 }
5441
5442 static void bgp_clear_node_complete(struct work_queue *wq)
5443 {
5444 struct peer *peer = wq->spec.data;
5445
5446 /* Tickle FSM to start moving again */
5447 BGP_EVENT_ADD(peer, Clearing_Completed);
5448
5449 peer_unlock(peer); /* bgp_clear_route */
5450 }
5451
5452 static void bgp_clear_node_queue_init(struct peer *peer)
5453 {
5454 char wname[sizeof("clear xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx")];
5455
5456 snprintf(wname, sizeof(wname), "clear %s", peer->host);
5457 #undef CLEAR_QUEUE_NAME_LEN
5458
5459 peer->clear_node_queue = work_queue_new(bm->master, wname);
5460 peer->clear_node_queue->spec.hold = 10;
5461 peer->clear_node_queue->spec.workfunc = &bgp_clear_route_node;
5462 peer->clear_node_queue->spec.del_item_data = &bgp_clear_node_queue_del;
5463 peer->clear_node_queue->spec.completion_func = &bgp_clear_node_complete;
5464 peer->clear_node_queue->spec.max_retries = 0;
5465
5466 /* we only 'lock' this peer reference when the queue is actually active
5467 */
5468 peer->clear_node_queue->spec.data = peer;
5469 }
5470
5471 static void bgp_clear_route_table(struct peer *peer, afi_t afi, safi_t safi,
5472 struct bgp_table *table)
5473 {
5474 struct bgp_dest *dest;
5475 int force = peer->bgp->process_queue ? 0 : 1;
5476
5477 if (!table)
5478 table = peer->bgp->rib[afi][safi];
5479
5480 /* If still no table => afi/safi isn't configured at all or smth. */
5481 if (!table)
5482 return;
5483
5484 for (dest = bgp_table_top(table); dest; dest = bgp_route_next(dest)) {
5485 struct bgp_path_info *pi, *next;
5486 struct bgp_adj_in *ain;
5487 struct bgp_adj_in *ain_next;
5488
5489 /* XXX:TODO: This is suboptimal, every non-empty route_node is
5490 * queued for every clearing peer, regardless of whether it is
5491 * relevant to the peer at hand.
5492 *
5493 * Overview: There are 3 different indices which need to be
5494 * scrubbed, potentially, when a peer is removed:
5495 *
5496 * 1 peer's routes visible via the RIB (ie accepted routes)
5497 * 2 peer's routes visible by the (optional) peer's adj-in index
5498 * 3 other routes visible by the peer's adj-out index
5499 *
5500 * 3 there is no hurry in scrubbing, once the struct peer is
5501 * removed from bgp->peer, we could just GC such deleted peer's
5502 * adj-outs at our leisure.
5503 *
5504 * 1 and 2 must be 'scrubbed' in some way, at least made
5505 * invisible via RIB index before peer session is allowed to be
5506 * brought back up. So one needs to know when such a 'search' is
5507 * complete.
5508 *
5509 * Ideally:
5510 *
5511 * - there'd be a single global queue or a single RIB walker
5512 * - rather than tracking which route_nodes still need to be
5513 * examined on a peer basis, we'd track which peers still
5514 * aren't cleared
5515 *
5516 * Given that our per-peer prefix-counts now should be reliable,
5517 * this may actually be achievable. It doesn't seem to be a huge
5518 * problem at this time,
5519 *
5520 * It is possible that we have multiple paths for a prefix from
5521 * a peer
5522 * if that peer is using AddPath.
5523 */
5524 ain = dest->adj_in;
5525 while (ain) {
5526 ain_next = ain->next;
5527
5528 if (ain->peer == peer)
5529 bgp_adj_in_remove(dest, ain);
5530
5531 ain = ain_next;
5532 }
5533
5534 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = next) {
5535 next = pi->next;
5536 if (pi->peer != peer)
5537 continue;
5538
5539 if (force)
5540 bgp_path_info_reap(dest, pi);
5541 else {
5542 struct bgp_clear_node_queue *cnq;
5543
5544 /* both unlocked in bgp_clear_node_queue_del */
5545 bgp_table_lock(bgp_dest_table(dest));
5546 bgp_dest_lock_node(dest);
5547 cnq = XCALLOC(
5548 MTYPE_BGP_CLEAR_NODE_QUEUE,
5549 sizeof(struct bgp_clear_node_queue));
5550 cnq->dest = dest;
5551 work_queue_add(peer->clear_node_queue, cnq);
5552 break;
5553 }
5554 }
5555 }
5556 return;
5557 }
5558
5559 void bgp_clear_route(struct peer *peer, afi_t afi, safi_t safi)
5560 {
5561 struct bgp_dest *dest;
5562 struct bgp_table *table;
5563
5564 if (peer->clear_node_queue == NULL)
5565 bgp_clear_node_queue_init(peer);
5566
5567 /* bgp_fsm.c keeps sessions in state Clearing, not transitioning to
5568 * Idle until it receives a Clearing_Completed event. This protects
5569 * against peers which flap faster than we can we clear, which could
5570 * lead to:
5571 *
5572 * a) race with routes from the new session being installed before
5573 * clear_route_node visits the node (to delete the route of that
5574 * peer)
5575 * b) resource exhaustion, clear_route_node likely leads to an entry
5576 * on the process_main queue. Fast-flapping could cause that queue
5577 * to grow and grow.
5578 */
5579
5580 /* lock peer in assumption that clear-node-queue will get nodes; if so,
5581 * the unlock will happen upon work-queue completion; other wise, the
5582 * unlock happens at the end of this function.
5583 */
5584 if (!peer->clear_node_queue->thread)
5585 peer_lock(peer);
5586
5587 if (safi != SAFI_MPLS_VPN && safi != SAFI_ENCAP && safi != SAFI_EVPN)
5588 bgp_clear_route_table(peer, afi, safi, NULL);
5589 else
5590 for (dest = bgp_table_top(peer->bgp->rib[afi][safi]); dest;
5591 dest = bgp_route_next(dest)) {
5592 table = bgp_dest_get_bgp_table_info(dest);
5593 if (!table)
5594 continue;
5595
5596 bgp_clear_route_table(peer, afi, safi, table);
5597 }
5598
5599 /* unlock if no nodes got added to the clear-node-queue. */
5600 if (!peer->clear_node_queue->thread)
5601 peer_unlock(peer);
5602 }
5603
5604 void bgp_clear_route_all(struct peer *peer)
5605 {
5606 afi_t afi;
5607 safi_t safi;
5608
5609 FOREACH_AFI_SAFI (afi, safi)
5610 bgp_clear_route(peer, afi, safi);
5611
5612 #ifdef ENABLE_BGP_VNC
5613 rfapiProcessPeerDown(peer);
5614 #endif
5615 }
5616
5617 void bgp_clear_adj_in(struct peer *peer, afi_t afi, safi_t safi)
5618 {
5619 struct bgp_table *table;
5620 struct bgp_dest *dest;
5621 struct bgp_adj_in *ain;
5622 struct bgp_adj_in *ain_next;
5623
5624 table = peer->bgp->rib[afi][safi];
5625
5626 /* It is possible that we have multiple paths for a prefix from a peer
5627 * if that peer is using AddPath.
5628 */
5629 for (dest = bgp_table_top(table); dest; dest = bgp_route_next(dest)) {
5630 ain = dest->adj_in;
5631
5632 while (ain) {
5633 ain_next = ain->next;
5634
5635 if (ain->peer == peer)
5636 bgp_adj_in_remove(dest, ain);
5637
5638 ain = ain_next;
5639 }
5640 }
5641 }
5642
5643 /* If any of the routes from the peer have been marked with the NO_LLGR
5644 * community, either as sent by the peer, or as the result of a configured
5645 * policy, they MUST NOT be retained, but MUST be removed as per the normal
5646 * operation of [RFC4271].
5647 */
5648 void bgp_clear_stale_route(struct peer *peer, afi_t afi, safi_t safi)
5649 {
5650 struct bgp_dest *dest;
5651 struct bgp_path_info *pi;
5652 struct bgp_table *table;
5653
5654 if (safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP || safi == SAFI_EVPN) {
5655 for (dest = bgp_table_top(peer->bgp->rib[afi][safi]); dest;
5656 dest = bgp_route_next(dest)) {
5657 struct bgp_dest *rm;
5658
5659 /* look for neighbor in tables */
5660 table = bgp_dest_get_bgp_table_info(dest);
5661 if (!table)
5662 continue;
5663
5664 for (rm = bgp_table_top(table); rm;
5665 rm = bgp_route_next(rm))
5666 for (pi = bgp_dest_get_bgp_path_info(rm); pi;
5667 pi = pi->next) {
5668 if (pi->peer != peer)
5669 continue;
5670 if (CHECK_FLAG(
5671 peer->af_sflags[afi][safi],
5672 PEER_STATUS_LLGR_WAIT) &&
5673 bgp_attr_get_community(pi->attr) &&
5674 !community_include(
5675 bgp_attr_get_community(
5676 pi->attr),
5677 COMMUNITY_NO_LLGR))
5678 continue;
5679 if (!CHECK_FLAG(pi->flags,
5680 BGP_PATH_STALE))
5681 continue;
5682
5683 /*
5684 * If this is VRF leaked route
5685 * process for withdraw.
5686 */
5687 if (pi->sub_type ==
5688 BGP_ROUTE_IMPORTED &&
5689 peer->bgp->inst_type ==
5690 BGP_INSTANCE_TYPE_DEFAULT)
5691 vpn_leak_to_vrf_withdraw(
5692 peer->bgp, pi);
5693
5694 bgp_rib_remove(rm, pi, peer, afi, safi);
5695 break;
5696 }
5697 }
5698 } else {
5699 for (dest = bgp_table_top(peer->bgp->rib[afi][safi]); dest;
5700 dest = bgp_route_next(dest))
5701 for (pi = bgp_dest_get_bgp_path_info(dest); pi;
5702 pi = pi->next) {
5703 if (pi->peer != peer)
5704 continue;
5705 if (CHECK_FLAG(peer->af_sflags[afi][safi],
5706 PEER_STATUS_LLGR_WAIT) &&
5707 bgp_attr_get_community(pi->attr) &&
5708 !community_include(
5709 bgp_attr_get_community(pi->attr),
5710 COMMUNITY_NO_LLGR))
5711 continue;
5712 if (!CHECK_FLAG(pi->flags, BGP_PATH_STALE))
5713 continue;
5714 if (safi == SAFI_UNICAST &&
5715 (peer->bgp->inst_type ==
5716 BGP_INSTANCE_TYPE_VRF ||
5717 peer->bgp->inst_type ==
5718 BGP_INSTANCE_TYPE_DEFAULT))
5719 vpn_leak_from_vrf_withdraw(
5720 bgp_get_default(), peer->bgp,
5721 pi);
5722
5723 bgp_rib_remove(dest, pi, peer, afi, safi);
5724 break;
5725 }
5726 }
5727 }
5728
5729 void bgp_set_stale_route(struct peer *peer, afi_t afi, safi_t safi)
5730 {
5731 struct bgp_dest *dest, *ndest;
5732 struct bgp_path_info *pi;
5733 struct bgp_table *table;
5734
5735 if (safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP || safi == SAFI_EVPN) {
5736 for (dest = bgp_table_top(peer->bgp->rib[afi][safi]); dest;
5737 dest = bgp_route_next(dest)) {
5738 table = bgp_dest_get_bgp_table_info(dest);
5739 if (!table)
5740 continue;
5741
5742 for (ndest = bgp_table_top(table); ndest;
5743 ndest = bgp_route_next(ndest)) {
5744 for (pi = bgp_dest_get_bgp_path_info(ndest); pi;
5745 pi = pi->next) {
5746 if (pi->peer != peer)
5747 continue;
5748
5749 if ((CHECK_FLAG(
5750 peer->af_sflags[afi][safi],
5751 PEER_STATUS_ENHANCED_REFRESH))
5752 && !CHECK_FLAG(pi->flags,
5753 BGP_PATH_STALE)
5754 && !CHECK_FLAG(
5755 pi->flags,
5756 BGP_PATH_UNUSEABLE)) {
5757 if (bgp_debug_neighbor_events(
5758 peer))
5759 zlog_debug(
5760 "%pBP route-refresh for %s/%s, marking prefix %pFX as stale",
5761 peer,
5762 afi2str(afi),
5763 safi2str(safi),
5764 bgp_dest_get_prefix(
5765 ndest));
5766
5767 bgp_path_info_set_flag(
5768 ndest, pi,
5769 BGP_PATH_STALE);
5770 }
5771 }
5772 }
5773 }
5774 } else {
5775 for (dest = bgp_table_top(peer->bgp->rib[afi][safi]); dest;
5776 dest = bgp_route_next(dest)) {
5777 for (pi = bgp_dest_get_bgp_path_info(dest); pi;
5778 pi = pi->next) {
5779 if (pi->peer != peer)
5780 continue;
5781
5782 if ((CHECK_FLAG(peer->af_sflags[afi][safi],
5783 PEER_STATUS_ENHANCED_REFRESH))
5784 && !CHECK_FLAG(pi->flags, BGP_PATH_STALE)
5785 && !CHECK_FLAG(pi->flags,
5786 BGP_PATH_UNUSEABLE)) {
5787 if (bgp_debug_neighbor_events(peer))
5788 zlog_debug(
5789 "%pBP route-refresh for %s/%s, marking prefix %pFX as stale",
5790 peer, afi2str(afi),
5791 safi2str(safi),
5792 bgp_dest_get_prefix(
5793 dest));
5794
5795 bgp_path_info_set_flag(dest, pi,
5796 BGP_PATH_STALE);
5797 }
5798 }
5799 }
5800 }
5801 }
5802
5803 bool bgp_outbound_policy_exists(struct peer *peer, struct bgp_filter *filter)
5804 {
5805 if (peer->sort == BGP_PEER_IBGP)
5806 return true;
5807
5808 if (peer->sort == BGP_PEER_EBGP
5809 && (ROUTE_MAP_OUT_NAME(filter) || PREFIX_LIST_OUT_NAME(filter)
5810 || FILTER_LIST_OUT_NAME(filter)
5811 || DISTRIBUTE_OUT_NAME(filter)))
5812 return true;
5813 return false;
5814 }
5815
5816 bool bgp_inbound_policy_exists(struct peer *peer, struct bgp_filter *filter)
5817 {
5818 if (peer->sort == BGP_PEER_IBGP)
5819 return true;
5820
5821 if (peer->sort == BGP_PEER_EBGP
5822 && (ROUTE_MAP_IN_NAME(filter) || PREFIX_LIST_IN_NAME(filter)
5823 || FILTER_LIST_IN_NAME(filter)
5824 || DISTRIBUTE_IN_NAME(filter)))
5825 return true;
5826 return false;
5827 }
5828
5829 static void bgp_cleanup_table(struct bgp *bgp, struct bgp_table *table,
5830 safi_t safi)
5831 {
5832 struct bgp_dest *dest;
5833 struct bgp_path_info *pi;
5834 struct bgp_path_info *next;
5835
5836 for (dest = bgp_table_top(table); dest; dest = bgp_route_next(dest))
5837 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = next) {
5838 const struct prefix *p = bgp_dest_get_prefix(dest);
5839
5840 next = pi->next;
5841
5842 /* Unimport EVPN routes from VRFs */
5843 if (safi == SAFI_EVPN)
5844 bgp_evpn_unimport_route(bgp, AFI_L2VPN,
5845 SAFI_EVPN, p, pi);
5846
5847 if (CHECK_FLAG(pi->flags, BGP_PATH_SELECTED)
5848 && pi->type == ZEBRA_ROUTE_BGP
5849 && (pi->sub_type == BGP_ROUTE_NORMAL
5850 || pi->sub_type == BGP_ROUTE_AGGREGATE
5851 || pi->sub_type == BGP_ROUTE_IMPORTED)) {
5852
5853 if (bgp_fibupd_safi(safi))
5854 bgp_zebra_withdraw(p, pi, bgp, safi);
5855 }
5856
5857 bgp_path_info_reap(dest, pi);
5858 }
5859 }
5860
5861 /* Delete all kernel routes. */
5862 void bgp_cleanup_routes(struct bgp *bgp)
5863 {
5864 afi_t afi;
5865 struct bgp_dest *dest;
5866 struct bgp_table *table;
5867
5868 for (afi = AFI_IP; afi < AFI_MAX; ++afi) {
5869 if (afi == AFI_L2VPN)
5870 continue;
5871 bgp_cleanup_table(bgp, bgp->rib[afi][SAFI_UNICAST],
5872 SAFI_UNICAST);
5873 /*
5874 * VPN and ENCAP and EVPN tables are two-level (RD is top level)
5875 */
5876 if (afi != AFI_L2VPN) {
5877 safi_t safi;
5878 safi = SAFI_MPLS_VPN;
5879 for (dest = bgp_table_top(bgp->rib[afi][safi]); dest;
5880 dest = bgp_route_next(dest)) {
5881 table = bgp_dest_get_bgp_table_info(dest);
5882 if (table != NULL) {
5883 bgp_cleanup_table(bgp, table, safi);
5884 bgp_table_finish(&table);
5885 bgp_dest_set_bgp_table_info(dest, NULL);
5886 bgp_dest_unlock_node(dest);
5887 }
5888 }
5889 safi = SAFI_ENCAP;
5890 for (dest = bgp_table_top(bgp->rib[afi][safi]); dest;
5891 dest = bgp_route_next(dest)) {
5892 table = bgp_dest_get_bgp_table_info(dest);
5893 if (table != NULL) {
5894 bgp_cleanup_table(bgp, table, safi);
5895 bgp_table_finish(&table);
5896 bgp_dest_set_bgp_table_info(dest, NULL);
5897 bgp_dest_unlock_node(dest);
5898 }
5899 }
5900 }
5901 }
5902 for (dest = bgp_table_top(bgp->rib[AFI_L2VPN][SAFI_EVPN]); dest;
5903 dest = bgp_route_next(dest)) {
5904 table = bgp_dest_get_bgp_table_info(dest);
5905 if (table != NULL) {
5906 bgp_cleanup_table(bgp, table, SAFI_EVPN);
5907 bgp_table_finish(&table);
5908 bgp_dest_set_bgp_table_info(dest, NULL);
5909 bgp_dest_unlock_node(dest);
5910 }
5911 }
5912 }
5913
5914 void bgp_reset(void)
5915 {
5916 vty_reset();
5917 bgp_zclient_reset();
5918 access_list_reset();
5919 prefix_list_reset();
5920 }
5921
5922 bool bgp_addpath_encode_rx(struct peer *peer, afi_t afi, safi_t safi)
5923 {
5924 return (CHECK_FLAG(peer->af_cap[afi][safi], PEER_CAP_ADDPATH_AF_RX_ADV)
5925 && CHECK_FLAG(peer->af_cap[afi][safi],
5926 PEER_CAP_ADDPATH_AF_TX_RCV));
5927 }
5928
5929 /* Parse NLRI stream. Withdraw NLRI is recognized by NULL attr
5930 value. */
5931 int bgp_nlri_parse_ip(struct peer *peer, struct attr *attr,
5932 struct bgp_nlri *packet)
5933 {
5934 uint8_t *pnt;
5935 uint8_t *lim;
5936 struct prefix p;
5937 int psize;
5938 afi_t afi;
5939 safi_t safi;
5940 bool addpath_capable;
5941 uint32_t addpath_id;
5942
5943 pnt = packet->nlri;
5944 lim = pnt + packet->length;
5945 afi = packet->afi;
5946 safi = packet->safi;
5947 addpath_id = 0;
5948 addpath_capable = bgp_addpath_encode_rx(peer, afi, safi);
5949
5950 /* RFC4771 6.3 The NLRI field in the UPDATE message is checked for
5951 syntactic validity. If the field is syntactically incorrect,
5952 then the Error Subcode is set to Invalid Network Field. */
5953 for (; pnt < lim; pnt += psize) {
5954 /* Clear prefix structure. */
5955 memset(&p, 0, sizeof(p));
5956
5957 if (addpath_capable) {
5958
5959 /* When packet overflow occurs return immediately. */
5960 if (pnt + BGP_ADDPATH_ID_LEN >= lim)
5961 return BGP_NLRI_PARSE_ERROR_PACKET_OVERFLOW;
5962
5963 memcpy(&addpath_id, pnt, BGP_ADDPATH_ID_LEN);
5964 addpath_id = ntohl(addpath_id);
5965 pnt += BGP_ADDPATH_ID_LEN;
5966 }
5967
5968 /* Fetch prefix length. */
5969 p.prefixlen = *pnt++;
5970 /* afi/safi validity already verified by caller,
5971 * bgp_update_receive */
5972 p.family = afi2family(afi);
5973
5974 /* Prefix length check. */
5975 if (p.prefixlen > prefix_blen(&p) * 8) {
5976 flog_err(
5977 EC_BGP_UPDATE_RCV,
5978 "%s [Error] Update packet error (wrong prefix length %d for afi %u)",
5979 peer->host, p.prefixlen, packet->afi);
5980 return BGP_NLRI_PARSE_ERROR_PREFIX_LENGTH;
5981 }
5982
5983 /* Packet size overflow check. */
5984 psize = PSIZE(p.prefixlen);
5985
5986 /* When packet overflow occur return immediately. */
5987 if (pnt + psize > lim) {
5988 flog_err(
5989 EC_BGP_UPDATE_RCV,
5990 "%s [Error] Update packet error (prefix length %d overflows packet)",
5991 peer->host, p.prefixlen);
5992 return BGP_NLRI_PARSE_ERROR_PACKET_OVERFLOW;
5993 }
5994
5995 /* Defensive coding, double-check the psize fits in a struct
5996 * prefix for the v4 and v6 afi's and unicast/multicast */
5997 if (psize > (ssize_t)sizeof(p.u.val)) {
5998 flog_err(
5999 EC_BGP_UPDATE_RCV,
6000 "%s [Error] Update packet error (prefix length %d too large for prefix storage %zu)",
6001 peer->host, p.prefixlen, sizeof(p.u.val));
6002 return BGP_NLRI_PARSE_ERROR_PACKET_LENGTH;
6003 }
6004
6005 /* Fetch prefix from NLRI packet. */
6006 memcpy(p.u.val, pnt, psize);
6007
6008 /* Check address. */
6009 if (afi == AFI_IP && safi == SAFI_UNICAST) {
6010 if (IN_CLASSD(ntohl(p.u.prefix4.s_addr))) {
6011 /* From RFC4271 Section 6.3:
6012 *
6013 * If a prefix in the NLRI field is semantically
6014 * incorrect
6015 * (e.g., an unexpected multicast IP address),
6016 * an error SHOULD
6017 * be logged locally, and the prefix SHOULD be
6018 * ignored.
6019 */
6020 flog_err(
6021 EC_BGP_UPDATE_RCV,
6022 "%s: IPv4 unicast NLRI is multicast address %pI4, ignoring",
6023 peer->host, &p.u.prefix4);
6024 continue;
6025 }
6026 }
6027
6028 /* Check address. */
6029 if (afi == AFI_IP6 && safi == SAFI_UNICAST) {
6030 if (IN6_IS_ADDR_LINKLOCAL(&p.u.prefix6)) {
6031 flog_err(
6032 EC_BGP_UPDATE_RCV,
6033 "%s: IPv6 unicast NLRI is link-local address %pI6, ignoring",
6034 peer->host, &p.u.prefix6);
6035
6036 continue;
6037 }
6038 if (IN6_IS_ADDR_MULTICAST(&p.u.prefix6)) {
6039 flog_err(
6040 EC_BGP_UPDATE_RCV,
6041 "%s: IPv6 unicast NLRI is multicast address %pI6, ignoring",
6042 peer->host, &p.u.prefix6);
6043
6044 continue;
6045 }
6046 }
6047
6048 /* Normal process. */
6049 if (attr)
6050 bgp_update(peer, &p, addpath_id, attr, afi, safi,
6051 ZEBRA_ROUTE_BGP, BGP_ROUTE_NORMAL, NULL,
6052 NULL, 0, 0, NULL);
6053 else
6054 bgp_withdraw(peer, &p, addpath_id, attr, afi, safi,
6055 ZEBRA_ROUTE_BGP, BGP_ROUTE_NORMAL, NULL,
6056 NULL, 0, NULL);
6057
6058 /* Do not send BGP notification twice when maximum-prefix count
6059 * overflow. */
6060 if (CHECK_FLAG(peer->sflags, PEER_STATUS_PREFIX_OVERFLOW))
6061 return BGP_NLRI_PARSE_ERROR_PREFIX_OVERFLOW;
6062 }
6063
6064 /* Packet length consistency check. */
6065 if (pnt != lim) {
6066 flog_err(
6067 EC_BGP_UPDATE_RCV,
6068 "%s [Error] Update packet error (prefix length mismatch with total length)",
6069 peer->host);
6070 return BGP_NLRI_PARSE_ERROR_PACKET_LENGTH;
6071 }
6072
6073 return BGP_NLRI_PARSE_OK;
6074 }
6075
6076 static struct bgp_static *bgp_static_new(void)
6077 {
6078 return XCALLOC(MTYPE_BGP_STATIC, sizeof(struct bgp_static));
6079 }
6080
6081 static void bgp_static_free(struct bgp_static *bgp_static)
6082 {
6083 XFREE(MTYPE_ROUTE_MAP_NAME, bgp_static->rmap.name);
6084 route_map_counter_decrement(bgp_static->rmap.map);
6085
6086 XFREE(MTYPE_ATTR, bgp_static->eth_s_id);
6087 XFREE(MTYPE_BGP_STATIC, bgp_static);
6088 }
6089
6090 void bgp_static_update(struct bgp *bgp, const struct prefix *p,
6091 struct bgp_static *bgp_static, afi_t afi, safi_t safi)
6092 {
6093 struct bgp_dest *dest;
6094 struct bgp_path_info *pi;
6095 struct bgp_path_info *new;
6096 struct bgp_path_info rmap_path;
6097 struct attr attr;
6098 struct attr *attr_new;
6099 route_map_result_t ret;
6100 #ifdef ENABLE_BGP_VNC
6101 int vnc_implicit_withdraw = 0;
6102 #endif
6103
6104 assert(bgp_static);
6105
6106 dest = bgp_afi_node_get(bgp->rib[afi][safi], afi, safi, p, NULL);
6107
6108 bgp_attr_default_set(&attr, bgp, BGP_ORIGIN_IGP);
6109
6110 attr.nexthop = bgp_static->igpnexthop;
6111 attr.med = bgp_static->igpmetric;
6112 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC);
6113
6114 if (afi == AFI_IP)
6115 attr.mp_nexthop_len = BGP_ATTR_NHLEN_IPV4;
6116
6117 if (bgp_static->igpmetric)
6118 bgp_attr_set_aigp_metric(&attr, bgp_static->igpmetric);
6119
6120 if (bgp_static->atomic)
6121 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE);
6122
6123 /* Store label index, if required. */
6124 if (bgp_static->label_index != BGP_INVALID_LABEL_INDEX) {
6125 attr.label_index = bgp_static->label_index;
6126 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_PREFIX_SID);
6127 }
6128
6129 /* Apply route-map. */
6130 if (bgp_static->rmap.name) {
6131 struct attr attr_tmp = attr;
6132
6133 memset(&rmap_path, 0, sizeof(rmap_path));
6134 rmap_path.peer = bgp->peer_self;
6135 rmap_path.attr = &attr_tmp;
6136
6137 SET_FLAG(bgp->peer_self->rmap_type, PEER_RMAP_TYPE_NETWORK);
6138
6139 ret = route_map_apply(bgp_static->rmap.map, p, &rmap_path);
6140
6141 bgp->peer_self->rmap_type = 0;
6142
6143 if (ret == RMAP_DENYMATCH) {
6144 /* Free uninterned attribute. */
6145 bgp_attr_flush(&attr_tmp);
6146
6147 /* Unintern original. */
6148 aspath_unintern(&attr.aspath);
6149 bgp_static_withdraw(bgp, p, afi, safi);
6150 bgp_dest_unlock_node(dest);
6151 return;
6152 }
6153
6154 if (bgp_in_graceful_shutdown(bgp))
6155 bgp_attr_add_gshut_community(&attr_tmp);
6156
6157 attr_new = bgp_attr_intern(&attr_tmp);
6158 } else {
6159
6160 if (bgp_in_graceful_shutdown(bgp))
6161 bgp_attr_add_gshut_community(&attr);
6162
6163 attr_new = bgp_attr_intern(&attr);
6164 }
6165
6166 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next)
6167 if (pi->peer == bgp->peer_self && pi->type == ZEBRA_ROUTE_BGP
6168 && pi->sub_type == BGP_ROUTE_STATIC)
6169 break;
6170
6171 if (pi) {
6172 if (attrhash_cmp(pi->attr, attr_new)
6173 && !CHECK_FLAG(pi->flags, BGP_PATH_REMOVED)
6174 && !CHECK_FLAG(bgp->flags, BGP_FLAG_FORCE_STATIC_PROCESS)) {
6175 bgp_dest_unlock_node(dest);
6176 bgp_attr_unintern(&attr_new);
6177 aspath_unintern(&attr.aspath);
6178 return;
6179 } else {
6180 /* The attribute is changed. */
6181 bgp_path_info_set_flag(dest, pi, BGP_PATH_ATTR_CHANGED);
6182
6183 /* Rewrite BGP route information. */
6184 if (CHECK_FLAG(pi->flags, BGP_PATH_REMOVED))
6185 bgp_path_info_restore(dest, pi);
6186 else
6187 bgp_aggregate_decrement(bgp, p, pi, afi, safi);
6188 #ifdef ENABLE_BGP_VNC
6189 if ((afi == AFI_IP || afi == AFI_IP6)
6190 && (safi == SAFI_UNICAST)) {
6191 if (CHECK_FLAG(pi->flags, BGP_PATH_SELECTED)) {
6192 /*
6193 * Implicit withdraw case.
6194 * We have to do this before pi is
6195 * changed
6196 */
6197 ++vnc_implicit_withdraw;
6198 vnc_import_bgp_del_route(bgp, p, pi);
6199 vnc_import_bgp_exterior_del_route(
6200 bgp, p, pi);
6201 }
6202 }
6203 #endif
6204 bgp_attr_unintern(&pi->attr);
6205 pi->attr = attr_new;
6206 pi->uptime = monotime(NULL);
6207 #ifdef ENABLE_BGP_VNC
6208 if ((afi == AFI_IP || afi == AFI_IP6)
6209 && (safi == SAFI_UNICAST)) {
6210 if (vnc_implicit_withdraw) {
6211 vnc_import_bgp_add_route(bgp, p, pi);
6212 vnc_import_bgp_exterior_add_route(
6213 bgp, p, pi);
6214 }
6215 }
6216 #endif
6217
6218 /* Nexthop reachability check. */
6219 if (CHECK_FLAG(bgp->flags, BGP_FLAG_IMPORT_CHECK)
6220 && (safi == SAFI_UNICAST
6221 || safi == SAFI_LABELED_UNICAST)) {
6222
6223 struct bgp *bgp_nexthop = bgp;
6224
6225 if (pi->extra && pi->extra->bgp_orig)
6226 bgp_nexthop = pi->extra->bgp_orig;
6227
6228 if (bgp_find_or_add_nexthop(bgp, bgp_nexthop,
6229 afi, safi, pi, NULL,
6230 0, p))
6231 bgp_path_info_set_flag(dest, pi,
6232 BGP_PATH_VALID);
6233 else {
6234 if (BGP_DEBUG(nht, NHT)) {
6235 char buf1[INET6_ADDRSTRLEN];
6236 inet_ntop(p->family,
6237 &p->u.prefix, buf1,
6238 sizeof(buf1));
6239 zlog_debug(
6240 "%s(%s): Route not in table, not advertising",
6241 __func__, buf1);
6242 }
6243 bgp_path_info_unset_flag(
6244 dest, pi, BGP_PATH_VALID);
6245 }
6246 } else {
6247 /* Delete the NHT structure if any, if we're
6248 * toggling between
6249 * enabling/disabling import check. We
6250 * deregister the route
6251 * from NHT to avoid overloading NHT and the
6252 * process interaction
6253 */
6254 bgp_unlink_nexthop(pi);
6255 bgp_path_info_set_flag(dest, pi,
6256 BGP_PATH_VALID);
6257 }
6258 /* Process change. */
6259 bgp_aggregate_increment(bgp, p, pi, afi, safi);
6260 bgp_process(bgp, dest, afi, safi);
6261
6262 if (SAFI_UNICAST == safi
6263 && (bgp->inst_type == BGP_INSTANCE_TYPE_VRF
6264 || bgp->inst_type
6265 == BGP_INSTANCE_TYPE_DEFAULT)) {
6266 vpn_leak_from_vrf_update(bgp_get_default(), bgp,
6267 pi);
6268 }
6269
6270 bgp_dest_unlock_node(dest);
6271 aspath_unintern(&attr.aspath);
6272 return;
6273 }
6274 }
6275
6276 /* Make new BGP info. */
6277 new = info_make(ZEBRA_ROUTE_BGP, BGP_ROUTE_STATIC, 0, bgp->peer_self,
6278 attr_new, dest);
6279 /* Nexthop reachability check. */
6280 if (CHECK_FLAG(bgp->flags, BGP_FLAG_IMPORT_CHECK)
6281 && (safi == SAFI_UNICAST || safi == SAFI_LABELED_UNICAST)) {
6282 if (bgp_find_or_add_nexthop(bgp, bgp, afi, safi, new, NULL, 0,
6283 p))
6284 bgp_path_info_set_flag(dest, new, BGP_PATH_VALID);
6285 else {
6286 if (BGP_DEBUG(nht, NHT)) {
6287 char buf1[INET6_ADDRSTRLEN];
6288
6289 inet_ntop(p->family, &p->u.prefix, buf1,
6290 sizeof(buf1));
6291 zlog_debug(
6292 "%s(%s): Route not in table, not advertising",
6293 __func__, buf1);
6294 }
6295 bgp_path_info_unset_flag(dest, new, BGP_PATH_VALID);
6296 }
6297 } else {
6298 /* Delete the NHT structure if any, if we're toggling between
6299 * enabling/disabling import check. We deregister the route
6300 * from NHT to avoid overloading NHT and the process interaction
6301 */
6302 bgp_unlink_nexthop(new);
6303
6304 bgp_path_info_set_flag(dest, new, BGP_PATH_VALID);
6305 }
6306
6307 /* Aggregate address increment. */
6308 bgp_aggregate_increment(bgp, p, new, afi, safi);
6309
6310 /* Register new BGP information. */
6311 bgp_path_info_add(dest, new);
6312
6313 /* route_node_get lock */
6314 bgp_dest_unlock_node(dest);
6315
6316 /* Process change. */
6317 bgp_process(bgp, dest, afi, safi);
6318
6319 if (SAFI_UNICAST == safi
6320 && (bgp->inst_type == BGP_INSTANCE_TYPE_VRF
6321 || bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
6322 vpn_leak_from_vrf_update(bgp_get_default(), bgp, new);
6323 }
6324
6325 /* Unintern original. */
6326 aspath_unintern(&attr.aspath);
6327 }
6328
6329 void bgp_static_withdraw(struct bgp *bgp, const struct prefix *p, afi_t afi,
6330 safi_t safi)
6331 {
6332 struct bgp_dest *dest;
6333 struct bgp_path_info *pi;
6334
6335 dest = bgp_afi_node_get(bgp->rib[afi][safi], afi, safi, p, NULL);
6336
6337 /* Check selected route and self inserted route. */
6338 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next)
6339 if (pi->peer == bgp->peer_self && pi->type == ZEBRA_ROUTE_BGP
6340 && pi->sub_type == BGP_ROUTE_STATIC)
6341 break;
6342
6343 /* Withdraw static BGP route from routing table. */
6344 if (pi) {
6345 if (SAFI_UNICAST == safi
6346 && (bgp->inst_type == BGP_INSTANCE_TYPE_VRF
6347 || bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
6348 vpn_leak_from_vrf_withdraw(bgp_get_default(), bgp, pi);
6349 }
6350 bgp_aggregate_decrement(bgp, p, pi, afi, safi);
6351 bgp_unlink_nexthop(pi);
6352 bgp_path_info_delete(dest, pi);
6353 bgp_process(bgp, dest, afi, safi);
6354 }
6355
6356 /* Unlock bgp_node_lookup. */
6357 bgp_dest_unlock_node(dest);
6358 }
6359
6360 /*
6361 * Used for SAFI_MPLS_VPN and SAFI_ENCAP
6362 */
6363 static void bgp_static_withdraw_safi(struct bgp *bgp, const struct prefix *p,
6364 afi_t afi, safi_t safi,
6365 struct prefix_rd *prd)
6366 {
6367 struct bgp_dest *dest;
6368 struct bgp_path_info *pi;
6369
6370 dest = bgp_afi_node_get(bgp->rib[afi][safi], afi, safi, p, prd);
6371
6372 /* Check selected route and self inserted route. */
6373 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next)
6374 if (pi->peer == bgp->peer_self && pi->type == ZEBRA_ROUTE_BGP
6375 && pi->sub_type == BGP_ROUTE_STATIC)
6376 break;
6377
6378 /* Withdraw static BGP route from routing table. */
6379 if (pi) {
6380 #ifdef ENABLE_BGP_VNC
6381 rfapiProcessWithdraw(
6382 pi->peer, NULL, p, prd, pi->attr, afi, safi, pi->type,
6383 1); /* Kill, since it is an administrative change */
6384 #endif
6385 if (SAFI_MPLS_VPN == safi
6386 && bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT) {
6387 vpn_leak_to_vrf_withdraw(bgp, pi);
6388 }
6389 bgp_aggregate_decrement(bgp, p, pi, afi, safi);
6390 bgp_path_info_delete(dest, pi);
6391 bgp_process(bgp, dest, afi, safi);
6392 }
6393
6394 /* Unlock bgp_node_lookup. */
6395 bgp_dest_unlock_node(dest);
6396 }
6397
6398 static void bgp_static_update_safi(struct bgp *bgp, const struct prefix *p,
6399 struct bgp_static *bgp_static, afi_t afi,
6400 safi_t safi)
6401 {
6402 struct bgp_dest *dest;
6403 struct bgp_path_info *new;
6404 struct attr *attr_new;
6405 struct attr attr = {0};
6406 struct bgp_path_info *pi;
6407 #ifdef ENABLE_BGP_VNC
6408 mpls_label_t label = 0;
6409 #endif
6410 uint32_t num_labels = 0;
6411
6412 assert(bgp_static);
6413
6414 if (bgp_static->label != MPLS_INVALID_LABEL)
6415 num_labels = 1;
6416 dest = bgp_afi_node_get(bgp->rib[afi][safi], afi, safi, p,
6417 &bgp_static->prd);
6418
6419 bgp_attr_default_set(&attr, bgp, BGP_ORIGIN_IGP);
6420
6421 attr.nexthop = bgp_static->igpnexthop;
6422 attr.med = bgp_static->igpmetric;
6423 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC);
6424
6425 if ((safi == SAFI_EVPN) || (safi == SAFI_MPLS_VPN)
6426 || (safi == SAFI_ENCAP)) {
6427 if (afi == AFI_IP) {
6428 attr.mp_nexthop_global_in = bgp_static->igpnexthop;
6429 attr.mp_nexthop_len = IPV4_MAX_BYTELEN;
6430 }
6431 }
6432 if (afi == AFI_L2VPN) {
6433 if (bgp_static->gatewayIp.family == AF_INET) {
6434 SET_IPADDR_V4(&attr.evpn_overlay.gw_ip);
6435 memcpy(&attr.evpn_overlay.gw_ip.ipaddr_v4,
6436 &bgp_static->gatewayIp.u.prefix4,
6437 IPV4_MAX_BYTELEN);
6438 } else if (bgp_static->gatewayIp.family == AF_INET6) {
6439 SET_IPADDR_V6(&attr.evpn_overlay.gw_ip);
6440 memcpy(&attr.evpn_overlay.gw_ip.ipaddr_v6,
6441 &bgp_static->gatewayIp.u.prefix6,
6442 IPV6_MAX_BYTELEN);
6443 }
6444 memcpy(&attr.esi, bgp_static->eth_s_id, sizeof(esi_t));
6445 if (bgp_static->encap_tunneltype == BGP_ENCAP_TYPE_VXLAN) {
6446 struct bgp_encap_type_vxlan bet;
6447 memset(&bet, 0, sizeof(bet));
6448 bet.vnid = p->u.prefix_evpn.prefix_addr.eth_tag;
6449 bgp_encap_type_vxlan_to_tlv(&bet, &attr);
6450 }
6451 if (bgp_static->router_mac) {
6452 bgp_add_routermac_ecom(&attr, bgp_static->router_mac);
6453 }
6454 }
6455 /* Apply route-map. */
6456 if (bgp_static->rmap.name) {
6457 struct attr attr_tmp = attr;
6458 struct bgp_path_info rmap_path;
6459 route_map_result_t ret;
6460
6461 rmap_path.peer = bgp->peer_self;
6462 rmap_path.attr = &attr_tmp;
6463
6464 SET_FLAG(bgp->peer_self->rmap_type, PEER_RMAP_TYPE_NETWORK);
6465
6466 ret = route_map_apply(bgp_static->rmap.map, p, &rmap_path);
6467
6468 bgp->peer_self->rmap_type = 0;
6469
6470 if (ret == RMAP_DENYMATCH) {
6471 /* Free uninterned attribute. */
6472 bgp_attr_flush(&attr_tmp);
6473
6474 /* Unintern original. */
6475 aspath_unintern(&attr.aspath);
6476 bgp_static_withdraw_safi(bgp, p, afi, safi,
6477 &bgp_static->prd);
6478 bgp_dest_unlock_node(dest);
6479 return;
6480 }
6481
6482 attr_new = bgp_attr_intern(&attr_tmp);
6483 } else {
6484 attr_new = bgp_attr_intern(&attr);
6485 }
6486
6487 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next)
6488 if (pi->peer == bgp->peer_self && pi->type == ZEBRA_ROUTE_BGP
6489 && pi->sub_type == BGP_ROUTE_STATIC)
6490 break;
6491
6492 if (pi) {
6493 if (attrhash_cmp(pi->attr, attr_new)
6494 && !CHECK_FLAG(pi->flags, BGP_PATH_REMOVED)) {
6495 bgp_dest_unlock_node(dest);
6496 bgp_attr_unintern(&attr_new);
6497 aspath_unintern(&attr.aspath);
6498 return;
6499 } else {
6500 /* The attribute is changed. */
6501 bgp_path_info_set_flag(dest, pi, BGP_PATH_ATTR_CHANGED);
6502
6503 /* Rewrite BGP route information. */
6504 if (CHECK_FLAG(pi->flags, BGP_PATH_REMOVED))
6505 bgp_path_info_restore(dest, pi);
6506 else
6507 bgp_aggregate_decrement(bgp, p, pi, afi, safi);
6508 bgp_attr_unintern(&pi->attr);
6509 pi->attr = attr_new;
6510 pi->uptime = monotime(NULL);
6511 #ifdef ENABLE_BGP_VNC
6512 if (pi->extra)
6513 label = decode_label(&pi->extra->label[0]);
6514 #endif
6515
6516 /* Process change. */
6517 bgp_aggregate_increment(bgp, p, pi, afi, safi);
6518 bgp_process(bgp, dest, afi, safi);
6519
6520 if (SAFI_MPLS_VPN == safi
6521 && bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT) {
6522 vpn_leak_to_vrf_update(bgp, pi,
6523 &bgp_static->prd);
6524 }
6525 #ifdef ENABLE_BGP_VNC
6526 rfapiProcessUpdate(pi->peer, NULL, p, &bgp_static->prd,
6527 pi->attr, afi, safi, pi->type,
6528 pi->sub_type, &label);
6529 #endif
6530 bgp_dest_unlock_node(dest);
6531 aspath_unintern(&attr.aspath);
6532 return;
6533 }
6534 }
6535
6536
6537 /* Make new BGP info. */
6538 new = info_make(ZEBRA_ROUTE_BGP, BGP_ROUTE_STATIC, 0, bgp->peer_self,
6539 attr_new, dest);
6540 SET_FLAG(new->flags, BGP_PATH_VALID);
6541 bgp_path_info_extra_get(new);
6542 if (num_labels) {
6543 new->extra->label[0] = bgp_static->label;
6544 new->extra->num_labels = num_labels;
6545 }
6546 #ifdef ENABLE_BGP_VNC
6547 label = decode_label(&bgp_static->label);
6548 #endif
6549
6550 /* Aggregate address increment. */
6551 bgp_aggregate_increment(bgp, p, new, afi, safi);
6552
6553 /* Register new BGP information. */
6554 bgp_path_info_add(dest, new);
6555 /* route_node_get lock */
6556 bgp_dest_unlock_node(dest);
6557
6558 /* Process change. */
6559 bgp_process(bgp, dest, afi, safi);
6560
6561 if (SAFI_MPLS_VPN == safi
6562 && bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT) {
6563 vpn_leak_to_vrf_update(bgp, new, &bgp_static->prd);
6564 }
6565 #ifdef ENABLE_BGP_VNC
6566 rfapiProcessUpdate(new->peer, NULL, p, &bgp_static->prd, new->attr, afi,
6567 safi, new->type, new->sub_type, &label);
6568 #endif
6569
6570 /* Unintern original. */
6571 aspath_unintern(&attr.aspath);
6572 }
6573
6574 /* Configure static BGP network. When user don't run zebra, static
6575 route should be installed as valid. */
6576 static int bgp_static_set(struct vty *vty, const char *negate,
6577 const char *ip_str, afi_t afi, safi_t safi,
6578 const char *rmap, int backdoor, uint32_t label_index)
6579 {
6580 VTY_DECLVAR_CONTEXT(bgp, bgp);
6581 int ret;
6582 struct prefix p;
6583 struct bgp_static *bgp_static;
6584 struct bgp_dest *dest;
6585 uint8_t need_update = 0;
6586
6587 /* Convert IP prefix string to struct prefix. */
6588 ret = str2prefix(ip_str, &p);
6589 if (!ret) {
6590 vty_out(vty, "%% Malformed prefix\n");
6591 return CMD_WARNING_CONFIG_FAILED;
6592 }
6593 if (afi == AFI_IP6 && IN6_IS_ADDR_LINKLOCAL(&p.u.prefix6)) {
6594 vty_out(vty, "%% Malformed prefix (link-local address)\n");
6595 return CMD_WARNING_CONFIG_FAILED;
6596 }
6597
6598 apply_mask(&p);
6599
6600 if (negate) {
6601
6602 /* Set BGP static route configuration. */
6603 dest = bgp_node_lookup(bgp->route[afi][safi], &p);
6604
6605 if (!dest) {
6606 vty_out(vty, "%% Can't find static route specified\n");
6607 return CMD_WARNING_CONFIG_FAILED;
6608 }
6609
6610 bgp_static = bgp_dest_get_bgp_static_info(dest);
6611
6612 if ((label_index != BGP_INVALID_LABEL_INDEX)
6613 && (label_index != bgp_static->label_index)) {
6614 vty_out(vty,
6615 "%% label-index doesn't match static route\n");
6616 bgp_dest_unlock_node(dest);
6617 return CMD_WARNING_CONFIG_FAILED;
6618 }
6619
6620 if ((rmap && bgp_static->rmap.name)
6621 && strcmp(rmap, bgp_static->rmap.name)) {
6622 vty_out(vty,
6623 "%% route-map name doesn't match static route\n");
6624 bgp_dest_unlock_node(dest);
6625 return CMD_WARNING_CONFIG_FAILED;
6626 }
6627
6628 /* Update BGP RIB. */
6629 if (!bgp_static->backdoor)
6630 bgp_static_withdraw(bgp, &p, afi, safi);
6631
6632 /* Clear configuration. */
6633 bgp_static_free(bgp_static);
6634 bgp_dest_set_bgp_static_info(dest, NULL);
6635 bgp_dest_unlock_node(dest);
6636 bgp_dest_unlock_node(dest);
6637 } else {
6638
6639 /* Set BGP static route configuration. */
6640 dest = bgp_node_get(bgp->route[afi][safi], &p);
6641 bgp_static = bgp_dest_get_bgp_static_info(dest);
6642 if (bgp_static) {
6643 /* Configuration change. */
6644 /* Label index cannot be changed. */
6645 if (bgp_static->label_index != label_index) {
6646 vty_out(vty, "%% cannot change label-index\n");
6647 bgp_dest_unlock_node(dest);
6648 return CMD_WARNING_CONFIG_FAILED;
6649 }
6650
6651 /* Check previous routes are installed into BGP. */
6652 if (bgp_static->valid
6653 && bgp_static->backdoor != backdoor)
6654 need_update = 1;
6655
6656 bgp_static->backdoor = backdoor;
6657
6658 if (rmap) {
6659 XFREE(MTYPE_ROUTE_MAP_NAME,
6660 bgp_static->rmap.name);
6661 route_map_counter_decrement(
6662 bgp_static->rmap.map);
6663 bgp_static->rmap.name =
6664 XSTRDUP(MTYPE_ROUTE_MAP_NAME, rmap);
6665 bgp_static->rmap.map =
6666 route_map_lookup_by_name(rmap);
6667 route_map_counter_increment(
6668 bgp_static->rmap.map);
6669 } else {
6670 XFREE(MTYPE_ROUTE_MAP_NAME,
6671 bgp_static->rmap.name);
6672 route_map_counter_decrement(
6673 bgp_static->rmap.map);
6674 bgp_static->rmap.map = NULL;
6675 bgp_static->valid = 0;
6676 }
6677 bgp_dest_unlock_node(dest);
6678 } else {
6679 /* New configuration. */
6680 bgp_static = bgp_static_new();
6681 bgp_static->backdoor = backdoor;
6682 bgp_static->valid = 0;
6683 bgp_static->igpmetric = 0;
6684 bgp_static->igpnexthop.s_addr = INADDR_ANY;
6685 bgp_static->label_index = label_index;
6686
6687 if (rmap) {
6688 XFREE(MTYPE_ROUTE_MAP_NAME,
6689 bgp_static->rmap.name);
6690 route_map_counter_decrement(
6691 bgp_static->rmap.map);
6692 bgp_static->rmap.name =
6693 XSTRDUP(MTYPE_ROUTE_MAP_NAME, rmap);
6694 bgp_static->rmap.map =
6695 route_map_lookup_by_name(rmap);
6696 route_map_counter_increment(
6697 bgp_static->rmap.map);
6698 }
6699 bgp_dest_set_bgp_static_info(dest, bgp_static);
6700 }
6701
6702 bgp_static->valid = 1;
6703 if (need_update)
6704 bgp_static_withdraw(bgp, &p, afi, safi);
6705
6706 if (!bgp_static->backdoor)
6707 bgp_static_update(bgp, &p, bgp_static, afi, safi);
6708 }
6709
6710 return CMD_SUCCESS;
6711 }
6712
6713 void bgp_static_add(struct bgp *bgp)
6714 {
6715 afi_t afi;
6716 safi_t safi;
6717 struct bgp_dest *dest;
6718 struct bgp_dest *rm;
6719 struct bgp_table *table;
6720 struct bgp_static *bgp_static;
6721
6722 SET_FLAG(bgp->flags, BGP_FLAG_FORCE_STATIC_PROCESS);
6723 FOREACH_AFI_SAFI (afi, safi)
6724 for (dest = bgp_table_top(bgp->route[afi][safi]); dest;
6725 dest = bgp_route_next(dest)) {
6726 if (!bgp_dest_has_bgp_path_info_data(dest))
6727 continue;
6728
6729 if ((safi == SAFI_MPLS_VPN) || (safi == SAFI_ENCAP)
6730 || (safi == SAFI_EVPN)) {
6731 table = bgp_dest_get_bgp_table_info(dest);
6732
6733 for (rm = bgp_table_top(table); rm;
6734 rm = bgp_route_next(rm)) {
6735 bgp_static =
6736 bgp_dest_get_bgp_static_info(
6737 rm);
6738 bgp_static_update_safi(
6739 bgp, bgp_dest_get_prefix(rm),
6740 bgp_static, afi, safi);
6741 }
6742 } else {
6743 bgp_static_update(
6744 bgp, bgp_dest_get_prefix(dest),
6745 bgp_dest_get_bgp_static_info(dest), afi,
6746 safi);
6747 }
6748 }
6749 UNSET_FLAG(bgp->flags, BGP_FLAG_FORCE_STATIC_PROCESS);
6750 }
6751
6752 /* Called from bgp_delete(). Delete all static routes from the BGP
6753 instance. */
6754 void bgp_static_delete(struct bgp *bgp)
6755 {
6756 afi_t afi;
6757 safi_t safi;
6758 struct bgp_dest *dest;
6759 struct bgp_dest *rm;
6760 struct bgp_table *table;
6761 struct bgp_static *bgp_static;
6762
6763 FOREACH_AFI_SAFI (afi, safi)
6764 for (dest = bgp_table_top(bgp->route[afi][safi]); dest;
6765 dest = bgp_route_next(dest)) {
6766 if (!bgp_dest_has_bgp_path_info_data(dest))
6767 continue;
6768
6769 if ((safi == SAFI_MPLS_VPN) || (safi == SAFI_ENCAP)
6770 || (safi == SAFI_EVPN)) {
6771 table = bgp_dest_get_bgp_table_info(dest);
6772
6773 for (rm = bgp_table_top(table); rm;
6774 rm = bgp_route_next(rm)) {
6775 bgp_static =
6776 bgp_dest_get_bgp_static_info(
6777 rm);
6778 if (!bgp_static)
6779 continue;
6780
6781 bgp_static_withdraw_safi(
6782 bgp, bgp_dest_get_prefix(rm),
6783 AFI_IP, safi,
6784 (struct prefix_rd *)
6785 bgp_dest_get_prefix(
6786 dest));
6787 bgp_static_free(bgp_static);
6788 bgp_dest_set_bgp_static_info(rm,
6789 NULL);
6790 bgp_dest_unlock_node(rm);
6791 }
6792 } else {
6793 bgp_static = bgp_dest_get_bgp_static_info(dest);
6794 bgp_static_withdraw(bgp,
6795 bgp_dest_get_prefix(dest),
6796 afi, safi);
6797 bgp_static_free(bgp_static);
6798 bgp_dest_set_bgp_static_info(dest, NULL);
6799 bgp_dest_unlock_node(dest);
6800 }
6801 }
6802 }
6803
6804 void bgp_static_redo_import_check(struct bgp *bgp)
6805 {
6806 afi_t afi;
6807 safi_t safi;
6808 struct bgp_dest *dest;
6809 struct bgp_dest *rm;
6810 struct bgp_table *table;
6811 struct bgp_static *bgp_static;
6812
6813 /* Use this flag to force reprocessing of the route */
6814 SET_FLAG(bgp->flags, BGP_FLAG_FORCE_STATIC_PROCESS);
6815 FOREACH_AFI_SAFI (afi, safi) {
6816 for (dest = bgp_table_top(bgp->route[afi][safi]); dest;
6817 dest = bgp_route_next(dest)) {
6818 if (!bgp_dest_has_bgp_path_info_data(dest))
6819 continue;
6820
6821 if ((safi == SAFI_MPLS_VPN) || (safi == SAFI_ENCAP)
6822 || (safi == SAFI_EVPN)) {
6823 table = bgp_dest_get_bgp_table_info(dest);
6824
6825 for (rm = bgp_table_top(table); rm;
6826 rm = bgp_route_next(rm)) {
6827 bgp_static =
6828 bgp_dest_get_bgp_static_info(
6829 rm);
6830 bgp_static_update_safi(
6831 bgp, bgp_dest_get_prefix(rm),
6832 bgp_static, afi, safi);
6833 }
6834 } else {
6835 bgp_static = bgp_dest_get_bgp_static_info(dest);
6836 bgp_static_update(bgp,
6837 bgp_dest_get_prefix(dest),
6838 bgp_static, afi, safi);
6839 }
6840 }
6841 }
6842 UNSET_FLAG(bgp->flags, BGP_FLAG_FORCE_STATIC_PROCESS);
6843 }
6844
6845 static void bgp_purge_af_static_redist_routes(struct bgp *bgp, afi_t afi,
6846 safi_t safi)
6847 {
6848 struct bgp_table *table;
6849 struct bgp_dest *dest;
6850 struct bgp_path_info *pi;
6851
6852 /* Do not install the aggregate route if BGP is in the
6853 * process of termination.
6854 */
6855 if (CHECK_FLAG(bgp->flags, BGP_FLAG_DELETE_IN_PROGRESS)
6856 || (bgp->peer_self == NULL))
6857 return;
6858
6859 table = bgp->rib[afi][safi];
6860 for (dest = bgp_table_top(table); dest; dest = bgp_route_next(dest)) {
6861 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next) {
6862 if (pi->peer == bgp->peer_self
6863 && ((pi->type == ZEBRA_ROUTE_BGP
6864 && pi->sub_type == BGP_ROUTE_STATIC)
6865 || (pi->type != ZEBRA_ROUTE_BGP
6866 && pi->sub_type
6867 == BGP_ROUTE_REDISTRIBUTE))) {
6868 bgp_aggregate_decrement(
6869 bgp, bgp_dest_get_prefix(dest), pi, afi,
6870 safi);
6871 bgp_unlink_nexthop(pi);
6872 bgp_path_info_delete(dest, pi);
6873 bgp_process(bgp, dest, afi, safi);
6874 }
6875 }
6876 }
6877 }
6878
6879 /*
6880 * Purge all networks and redistributed routes from routing table.
6881 * Invoked upon the instance going down.
6882 */
6883 void bgp_purge_static_redist_routes(struct bgp *bgp)
6884 {
6885 afi_t afi;
6886 safi_t safi;
6887
6888 FOREACH_AFI_SAFI (afi, safi)
6889 bgp_purge_af_static_redist_routes(bgp, afi, safi);
6890 }
6891
6892 /*
6893 * gpz 110624
6894 * Currently this is used to set static routes for VPN and ENCAP.
6895 * I think it can probably be factored with bgp_static_set.
6896 */
6897 int bgp_static_set_safi(afi_t afi, safi_t safi, struct vty *vty,
6898 const char *ip_str, const char *rd_str,
6899 const char *label_str, const char *rmap_str,
6900 int evpn_type, const char *esi, const char *gwip,
6901 const char *ethtag, const char *routermac)
6902 {
6903 VTY_DECLVAR_CONTEXT(bgp, bgp);
6904 int ret;
6905 struct prefix p;
6906 struct prefix_rd prd;
6907 struct bgp_dest *pdest;
6908 struct bgp_dest *dest;
6909 struct bgp_table *table;
6910 struct bgp_static *bgp_static;
6911 mpls_label_t label = MPLS_INVALID_LABEL;
6912 struct prefix gw_ip;
6913
6914 /* validate ip prefix */
6915 ret = str2prefix(ip_str, &p);
6916 if (!ret) {
6917 vty_out(vty, "%% Malformed prefix\n");
6918 return CMD_WARNING_CONFIG_FAILED;
6919 }
6920 apply_mask(&p);
6921 if ((afi == AFI_L2VPN)
6922 && (bgp_build_evpn_prefix(evpn_type,
6923 ethtag != NULL ? atol(ethtag) : 0, &p))) {
6924 vty_out(vty, "%% L2VPN prefix could not be forged\n");
6925 return CMD_WARNING_CONFIG_FAILED;
6926 }
6927
6928 ret = str2prefix_rd(rd_str, &prd);
6929 if (!ret) {
6930 vty_out(vty, "%% Malformed rd\n");
6931 return CMD_WARNING_CONFIG_FAILED;
6932 }
6933
6934 if (label_str) {
6935 unsigned long label_val;
6936 label_val = strtoul(label_str, NULL, 10);
6937 encode_label(label_val, &label);
6938 }
6939
6940 if (safi == SAFI_EVPN) {
6941 if (esi && str2esi(esi, NULL) == 0) {
6942 vty_out(vty, "%% Malformed ESI\n");
6943 return CMD_WARNING_CONFIG_FAILED;
6944 }
6945 if (routermac && prefix_str2mac(routermac, NULL) == 0) {
6946 vty_out(vty, "%% Malformed Router MAC\n");
6947 return CMD_WARNING_CONFIG_FAILED;
6948 }
6949 if (gwip) {
6950 memset(&gw_ip, 0, sizeof(gw_ip));
6951 ret = str2prefix(gwip, &gw_ip);
6952 if (!ret) {
6953 vty_out(vty, "%% Malformed GatewayIp\n");
6954 return CMD_WARNING_CONFIG_FAILED;
6955 }
6956 if ((gw_ip.family == AF_INET
6957 && is_evpn_prefix_ipaddr_v6(
6958 (struct prefix_evpn *)&p))
6959 || (gw_ip.family == AF_INET6
6960 && is_evpn_prefix_ipaddr_v4(
6961 (struct prefix_evpn *)&p))) {
6962 vty_out(vty,
6963 "%% GatewayIp family differs with IP prefix\n");
6964 return CMD_WARNING_CONFIG_FAILED;
6965 }
6966 }
6967 }
6968 pdest = bgp_node_get(bgp->route[afi][safi], (struct prefix *)&prd);
6969 if (!bgp_dest_has_bgp_path_info_data(pdest))
6970 bgp_dest_set_bgp_table_info(pdest,
6971 bgp_table_init(bgp, afi, safi));
6972 table = bgp_dest_get_bgp_table_info(pdest);
6973
6974 dest = bgp_node_get(table, &p);
6975
6976 if (bgp_dest_has_bgp_path_info_data(dest)) {
6977 vty_out(vty, "%% Same network configuration exists\n");
6978 bgp_dest_unlock_node(dest);
6979 } else {
6980 /* New configuration. */
6981 bgp_static = bgp_static_new();
6982 bgp_static->backdoor = 0;
6983 bgp_static->valid = 0;
6984 bgp_static->igpmetric = 0;
6985 bgp_static->igpnexthop.s_addr = INADDR_ANY;
6986 bgp_static->label = label;
6987 bgp_static->prd = prd;
6988
6989 if (rmap_str) {
6990 XFREE(MTYPE_ROUTE_MAP_NAME, bgp_static->rmap.name);
6991 route_map_counter_decrement(bgp_static->rmap.map);
6992 bgp_static->rmap.name =
6993 XSTRDUP(MTYPE_ROUTE_MAP_NAME, rmap_str);
6994 bgp_static->rmap.map =
6995 route_map_lookup_by_name(rmap_str);
6996 route_map_counter_increment(bgp_static->rmap.map);
6997 }
6998
6999 if (safi == SAFI_EVPN) {
7000 if (esi) {
7001 bgp_static->eth_s_id =
7002 XCALLOC(MTYPE_ATTR,
7003 sizeof(esi_t));
7004 str2esi(esi, bgp_static->eth_s_id);
7005 }
7006 if (routermac) {
7007 bgp_static->router_mac =
7008 XCALLOC(MTYPE_ATTR, ETH_ALEN + 1);
7009 (void)prefix_str2mac(routermac,
7010 bgp_static->router_mac);
7011 }
7012 if (gwip)
7013 prefix_copy(&bgp_static->gatewayIp, &gw_ip);
7014 }
7015 bgp_dest_set_bgp_static_info(dest, bgp_static);
7016
7017 bgp_static->valid = 1;
7018 bgp_static_update_safi(bgp, &p, bgp_static, afi, safi);
7019 }
7020
7021 return CMD_SUCCESS;
7022 }
7023
7024 /* Configure static BGP network. */
7025 int bgp_static_unset_safi(afi_t afi, safi_t safi, struct vty *vty,
7026 const char *ip_str, const char *rd_str,
7027 const char *label_str, int evpn_type, const char *esi,
7028 const char *gwip, const char *ethtag)
7029 {
7030 VTY_DECLVAR_CONTEXT(bgp, bgp);
7031 int ret;
7032 struct prefix p;
7033 struct prefix_rd prd;
7034 struct bgp_dest *pdest;
7035 struct bgp_dest *dest;
7036 struct bgp_table *table;
7037 struct bgp_static *bgp_static;
7038 mpls_label_t label = MPLS_INVALID_LABEL;
7039
7040 /* Convert IP prefix string to struct prefix. */
7041 ret = str2prefix(ip_str, &p);
7042 if (!ret) {
7043 vty_out(vty, "%% Malformed prefix\n");
7044 return CMD_WARNING_CONFIG_FAILED;
7045 }
7046 apply_mask(&p);
7047 if ((afi == AFI_L2VPN)
7048 && (bgp_build_evpn_prefix(evpn_type,
7049 ethtag != NULL ? atol(ethtag) : 0, &p))) {
7050 vty_out(vty, "%% L2VPN prefix could not be forged\n");
7051 return CMD_WARNING_CONFIG_FAILED;
7052 }
7053 ret = str2prefix_rd(rd_str, &prd);
7054 if (!ret) {
7055 vty_out(vty, "%% Malformed rd\n");
7056 return CMD_WARNING_CONFIG_FAILED;
7057 }
7058
7059 if (label_str) {
7060 unsigned long label_val;
7061 label_val = strtoul(label_str, NULL, 10);
7062 encode_label(label_val, &label);
7063 }
7064
7065 pdest = bgp_node_get(bgp->route[afi][safi], (struct prefix *)&prd);
7066 if (!bgp_dest_has_bgp_path_info_data(pdest))
7067 bgp_dest_set_bgp_table_info(pdest,
7068 bgp_table_init(bgp, afi, safi));
7069 else
7070 bgp_dest_unlock_node(pdest);
7071 table = bgp_dest_get_bgp_table_info(pdest);
7072
7073 dest = bgp_node_lookup(table, &p);
7074
7075 if (dest) {
7076 bgp_static_withdraw_safi(bgp, &p, afi, safi, &prd);
7077
7078 bgp_static = bgp_dest_get_bgp_static_info(dest);
7079 bgp_static_free(bgp_static);
7080 bgp_dest_set_bgp_static_info(dest, NULL);
7081 bgp_dest_unlock_node(dest);
7082 bgp_dest_unlock_node(dest);
7083 } else
7084 vty_out(vty, "%% Can't find the route\n");
7085
7086 return CMD_SUCCESS;
7087 }
7088
7089 static int bgp_table_map_set(struct vty *vty, afi_t afi, safi_t safi,
7090 const char *rmap_name)
7091 {
7092 VTY_DECLVAR_CONTEXT(bgp, bgp);
7093 struct bgp_rmap *rmap;
7094
7095 rmap = &bgp->table_map[afi][safi];
7096 if (rmap_name) {
7097 XFREE(MTYPE_ROUTE_MAP_NAME, rmap->name);
7098 route_map_counter_decrement(rmap->map);
7099 rmap->name = XSTRDUP(MTYPE_ROUTE_MAP_NAME, rmap_name);
7100 rmap->map = route_map_lookup_by_name(rmap_name);
7101 route_map_counter_increment(rmap->map);
7102 } else {
7103 XFREE(MTYPE_ROUTE_MAP_NAME, rmap->name);
7104 route_map_counter_decrement(rmap->map);
7105 rmap->map = NULL;
7106 }
7107
7108 if (bgp_fibupd_safi(safi))
7109 bgp_zebra_announce_table(bgp, afi, safi);
7110
7111 return CMD_SUCCESS;
7112 }
7113
7114 static int bgp_table_map_unset(struct vty *vty, afi_t afi, safi_t safi,
7115 const char *rmap_name)
7116 {
7117 VTY_DECLVAR_CONTEXT(bgp, bgp);
7118 struct bgp_rmap *rmap;
7119
7120 rmap = &bgp->table_map[afi][safi];
7121 XFREE(MTYPE_ROUTE_MAP_NAME, rmap->name);
7122 route_map_counter_decrement(rmap->map);
7123 rmap->map = NULL;
7124
7125 if (bgp_fibupd_safi(safi))
7126 bgp_zebra_announce_table(bgp, afi, safi);
7127
7128 return CMD_SUCCESS;
7129 }
7130
7131 void bgp_config_write_table_map(struct vty *vty, struct bgp *bgp, afi_t afi,
7132 safi_t safi)
7133 {
7134 if (bgp->table_map[afi][safi].name) {
7135 vty_out(vty, " table-map %s\n",
7136 bgp->table_map[afi][safi].name);
7137 }
7138 }
7139
7140 DEFUN (bgp_table_map,
7141 bgp_table_map_cmd,
7142 "table-map WORD",
7143 "BGP table to RIB route download filter\n"
7144 "Name of the route map\n")
7145 {
7146 int idx_word = 1;
7147 return bgp_table_map_set(vty, bgp_node_afi(vty), bgp_node_safi(vty),
7148 argv[idx_word]->arg);
7149 }
7150 DEFUN (no_bgp_table_map,
7151 no_bgp_table_map_cmd,
7152 "no table-map WORD",
7153 NO_STR
7154 "BGP table to RIB route download filter\n"
7155 "Name of the route map\n")
7156 {
7157 int idx_word = 2;
7158 return bgp_table_map_unset(vty, bgp_node_afi(vty), bgp_node_safi(vty),
7159 argv[idx_word]->arg);
7160 }
7161
7162 DEFPY(bgp_network,
7163 bgp_network_cmd,
7164 "[no] network \
7165 <A.B.C.D/M$prefix|A.B.C.D$address [mask A.B.C.D$netmask]> \
7166 [{route-map RMAP_NAME$map_name|label-index (0-1048560)$label_index| \
7167 backdoor$backdoor}]",
7168 NO_STR
7169 "Specify a network to announce via BGP\n"
7170 "IPv4 prefix\n"
7171 "Network number\n"
7172 "Network mask\n"
7173 "Network mask\n"
7174 "Route-map to modify the attributes\n"
7175 "Name of the route map\n"
7176 "Label index to associate with the prefix\n"
7177 "Label index value\n"
7178 "Specify a BGP backdoor route\n")
7179 {
7180 char addr_prefix_str[BUFSIZ];
7181
7182 if (address_str) {
7183 int ret;
7184
7185 ret = netmask_str2prefix_str(address_str, netmask_str,
7186 addr_prefix_str,
7187 sizeof(addr_prefix_str));
7188 if (!ret) {
7189 vty_out(vty, "%% Inconsistent address and mask\n");
7190 return CMD_WARNING_CONFIG_FAILED;
7191 }
7192 }
7193
7194 return bgp_static_set(
7195 vty, no, address_str ? addr_prefix_str : prefix_str, AFI_IP,
7196 bgp_node_safi(vty), map_name, backdoor ? 1 : 0,
7197 label_index ? (uint32_t)label_index : BGP_INVALID_LABEL_INDEX);
7198 }
7199
7200 DEFPY(ipv6_bgp_network,
7201 ipv6_bgp_network_cmd,
7202 "[no] network X:X::X:X/M$prefix \
7203 [{route-map RMAP_NAME$map_name|label-index (0-1048560)$label_index}]",
7204 NO_STR
7205 "Specify a network to announce via BGP\n"
7206 "IPv6 prefix\n"
7207 "Route-map to modify the attributes\n"
7208 "Name of the route map\n"
7209 "Label index to associate with the prefix\n"
7210 "Label index value\n")
7211 {
7212 return bgp_static_set(
7213 vty, no, prefix_str, AFI_IP6, bgp_node_safi(vty), map_name, 0,
7214 label_index ? (uint32_t)label_index : BGP_INVALID_LABEL_INDEX);
7215 }
7216
7217 static struct bgp_aggregate *bgp_aggregate_new(void)
7218 {
7219 return XCALLOC(MTYPE_BGP_AGGREGATE, sizeof(struct bgp_aggregate));
7220 }
7221
7222 static void bgp_aggregate_free(struct bgp_aggregate *aggregate)
7223 {
7224 XFREE(MTYPE_ROUTE_MAP_NAME, aggregate->suppress_map_name);
7225 route_map_counter_decrement(aggregate->suppress_map);
7226 XFREE(MTYPE_ROUTE_MAP_NAME, aggregate->rmap.name);
7227 route_map_counter_decrement(aggregate->rmap.map);
7228 XFREE(MTYPE_BGP_AGGREGATE, aggregate);
7229 }
7230
7231 /**
7232 * Helper function to avoid repeated code: prepare variables for a
7233 * `route_map_apply` call.
7234 *
7235 * \returns `true` on route map match, otherwise `false`.
7236 */
7237 static bool aggr_suppress_map_test(struct bgp *bgp,
7238 struct bgp_aggregate *aggregate,
7239 struct bgp_path_info *pi)
7240 {
7241 const struct prefix *p = bgp_dest_get_prefix(pi->net);
7242 route_map_result_t rmr = RMAP_DENYMATCH;
7243 struct bgp_path_info rmap_path = {};
7244 struct attr attr = {};
7245
7246 /* No route map entries created, just don't match. */
7247 if (aggregate->suppress_map == NULL)
7248 return false;
7249
7250 /* Call route map matching and return result. */
7251 attr.aspath = aspath_empty();
7252 rmap_path.peer = bgp->peer_self;
7253 rmap_path.attr = &attr;
7254
7255 SET_FLAG(bgp->peer_self->rmap_type, PEER_RMAP_TYPE_AGGREGATE);
7256 rmr = route_map_apply(aggregate->suppress_map, p, &rmap_path);
7257 bgp->peer_self->rmap_type = 0;
7258
7259 bgp_attr_flush(&attr);
7260 aspath_unintern(&attr.aspath);
7261
7262 return rmr == RMAP_PERMITMATCH;
7263 }
7264
7265 /** Test whether the aggregation has suppressed this path or not. */
7266 static bool aggr_suppress_exists(struct bgp_aggregate *aggregate,
7267 struct bgp_path_info *pi)
7268 {
7269 if (pi->extra == NULL || pi->extra->aggr_suppressors == NULL)
7270 return false;
7271
7272 return listnode_lookup(pi->extra->aggr_suppressors, aggregate) != NULL;
7273 }
7274
7275 /**
7276 * Suppress this path and keep the reference.
7277 *
7278 * \returns `true` if needs processing otherwise `false`.
7279 */
7280 static bool aggr_suppress_path(struct bgp_aggregate *aggregate,
7281 struct bgp_path_info *pi)
7282 {
7283 struct bgp_path_info_extra *pie;
7284
7285 /* Path is already suppressed by this aggregation. */
7286 if (aggr_suppress_exists(aggregate, pi))
7287 return false;
7288
7289 pie = bgp_path_info_extra_get(pi);
7290
7291 /* This is the first suppression, allocate memory and list it. */
7292 if (pie->aggr_suppressors == NULL)
7293 pie->aggr_suppressors = list_new();
7294
7295 listnode_add(pie->aggr_suppressors, aggregate);
7296
7297 /* Only mark for processing if suppressed. */
7298 if (listcount(pie->aggr_suppressors) == 1) {
7299 if (BGP_DEBUG(update, UPDATE_OUT))
7300 zlog_debug("aggregate-address suppressing: %pFX",
7301 bgp_dest_get_prefix(pi->net));
7302
7303 bgp_path_info_set_flag(pi->net, pi, BGP_PATH_ATTR_CHANGED);
7304 return true;
7305 }
7306
7307 return false;
7308 }
7309
7310 /**
7311 * Unsuppress this path and remove the reference.
7312 *
7313 * \returns `true` if needs processing otherwise `false`.
7314 */
7315 static bool aggr_unsuppress_path(struct bgp_aggregate *aggregate,
7316 struct bgp_path_info *pi)
7317 {
7318 /* Path wasn't suppressed. */
7319 if (!aggr_suppress_exists(aggregate, pi))
7320 return false;
7321
7322 listnode_delete(pi->extra->aggr_suppressors, aggregate);
7323
7324 /* Unsuppress and free extra memory if last item. */
7325 if (listcount(pi->extra->aggr_suppressors) == 0) {
7326 if (BGP_DEBUG(update, UPDATE_OUT))
7327 zlog_debug("aggregate-address unsuppressing: %pFX",
7328 bgp_dest_get_prefix(pi->net));
7329
7330 list_delete(&pi->extra->aggr_suppressors);
7331 bgp_path_info_set_flag(pi->net, pi, BGP_PATH_ATTR_CHANGED);
7332 return true;
7333 }
7334
7335 return false;
7336 }
7337
7338 static bool bgp_aggregate_info_same(struct bgp_path_info *pi, uint8_t origin,
7339 struct aspath *aspath,
7340 struct community *comm,
7341 struct ecommunity *ecomm,
7342 struct lcommunity *lcomm)
7343 {
7344 static struct aspath *ae = NULL;
7345
7346 if (!ae)
7347 ae = aspath_empty();
7348
7349 if (!pi)
7350 return false;
7351
7352 if (origin != pi->attr->origin)
7353 return false;
7354
7355 if (!aspath_cmp(pi->attr->aspath, (aspath) ? aspath : ae))
7356 return false;
7357
7358 if (!community_cmp(bgp_attr_get_community(pi->attr), comm))
7359 return false;
7360
7361 if (!ecommunity_cmp(bgp_attr_get_ecommunity(pi->attr), ecomm))
7362 return false;
7363
7364 if (!lcommunity_cmp(bgp_attr_get_lcommunity(pi->attr), lcomm))
7365 return false;
7366
7367 if (!CHECK_FLAG(pi->flags, BGP_PATH_VALID))
7368 return false;
7369
7370 return true;
7371 }
7372
7373 static void bgp_aggregate_install(
7374 struct bgp *bgp, afi_t afi, safi_t safi, const struct prefix *p,
7375 uint8_t origin, struct aspath *aspath, struct community *community,
7376 struct ecommunity *ecommunity, struct lcommunity *lcommunity,
7377 uint8_t atomic_aggregate, struct bgp_aggregate *aggregate)
7378 {
7379 struct bgp_dest *dest;
7380 struct bgp_table *table;
7381 struct bgp_path_info *pi, *orig, *new;
7382 struct attr *attr;
7383
7384 table = bgp->rib[afi][safi];
7385
7386 dest = bgp_node_get(table, p);
7387
7388 for (orig = pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next)
7389 if (pi->peer == bgp->peer_self && pi->type == ZEBRA_ROUTE_BGP
7390 && pi->sub_type == BGP_ROUTE_AGGREGATE)
7391 break;
7392
7393 /*
7394 * If we have paths with different MEDs, then don't install
7395 * (or uninstall) the aggregate route.
7396 */
7397 if (aggregate->match_med && aggregate->med_mismatched)
7398 goto uninstall_aggregate_route;
7399
7400 if (aggregate->count > 0) {
7401 /*
7402 * If the aggregate information has not changed
7403 * no need to re-install it again.
7404 */
7405 if (bgp_aggregate_info_same(orig, origin, aspath, community,
7406 ecommunity, lcommunity)) {
7407 bgp_dest_unlock_node(dest);
7408
7409 if (aspath)
7410 aspath_free(aspath);
7411 if (community)
7412 community_free(&community);
7413 if (ecommunity)
7414 ecommunity_free(&ecommunity);
7415 if (lcommunity)
7416 lcommunity_free(&lcommunity);
7417
7418 return;
7419 }
7420
7421 /*
7422 * Mark the old as unusable
7423 */
7424 if (pi)
7425 bgp_path_info_delete(dest, pi);
7426
7427 attr = bgp_attr_aggregate_intern(
7428 bgp, origin, aspath, community, ecommunity, lcommunity,
7429 aggregate, atomic_aggregate, p);
7430
7431 if (!attr) {
7432 bgp_dest_unlock_node(dest);
7433 bgp_aggregate_delete(bgp, p, afi, safi, aggregate);
7434 if (BGP_DEBUG(update_groups, UPDATE_GROUPS))
7435 zlog_debug("%s: %pFX null attribute", __func__,
7436 p);
7437 return;
7438 }
7439
7440 new = info_make(ZEBRA_ROUTE_BGP, BGP_ROUTE_AGGREGATE, 0,
7441 bgp->peer_self, attr, dest);
7442
7443 SET_FLAG(new->flags, BGP_PATH_VALID);
7444
7445 bgp_path_info_add(dest, new);
7446 bgp_process(bgp, dest, afi, safi);
7447 } else {
7448 uninstall_aggregate_route:
7449 for (pi = orig; pi; pi = pi->next)
7450 if (pi->peer == bgp->peer_self
7451 && pi->type == ZEBRA_ROUTE_BGP
7452 && pi->sub_type == BGP_ROUTE_AGGREGATE)
7453 break;
7454
7455 /* Withdraw static BGP route from routing table. */
7456 if (pi) {
7457 bgp_path_info_delete(dest, pi);
7458 bgp_process(bgp, dest, afi, safi);
7459 }
7460 }
7461
7462 bgp_dest_unlock_node(dest);
7463 }
7464
7465 /**
7466 * Check if the current path has different MED than other known paths.
7467 *
7468 * \returns `true` if the MED matched the others else `false`.
7469 */
7470 static bool bgp_aggregate_med_match(struct bgp_aggregate *aggregate,
7471 struct bgp *bgp, struct bgp_path_info *pi)
7472 {
7473 uint32_t cur_med = bgp_med_value(pi->attr, bgp);
7474
7475 /* This is the first route being analyzed. */
7476 if (!aggregate->med_initialized) {
7477 aggregate->med_initialized = true;
7478 aggregate->med_mismatched = false;
7479 aggregate->med_matched_value = cur_med;
7480 } else {
7481 /* Check if routes with different MED showed up. */
7482 if (cur_med != aggregate->med_matched_value)
7483 aggregate->med_mismatched = true;
7484 }
7485
7486 return !aggregate->med_mismatched;
7487 }
7488
7489 /**
7490 * Initializes and tests all routes in the aggregate address path for MED
7491 * values.
7492 *
7493 * \returns `true` if all MEDs are the same otherwise `false`.
7494 */
7495 static bool bgp_aggregate_test_all_med(struct bgp_aggregate *aggregate,
7496 struct bgp *bgp, const struct prefix *p,
7497 afi_t afi, safi_t safi)
7498 {
7499 struct bgp_table *table = bgp->rib[afi][safi];
7500 const struct prefix *dest_p;
7501 struct bgp_dest *dest, *top;
7502 struct bgp_path_info *pi;
7503 bool med_matched = true;
7504
7505 aggregate->med_initialized = false;
7506
7507 top = bgp_node_get(table, p);
7508 for (dest = bgp_node_get(table, p); dest;
7509 dest = bgp_route_next_until(dest, top)) {
7510 dest_p = bgp_dest_get_prefix(dest);
7511 if (dest_p->prefixlen <= p->prefixlen)
7512 continue;
7513
7514 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next) {
7515 if (BGP_PATH_HOLDDOWN(pi))
7516 continue;
7517 if (pi->sub_type == BGP_ROUTE_AGGREGATE)
7518 continue;
7519 if (!bgp_aggregate_med_match(aggregate, bgp, pi)) {
7520 med_matched = false;
7521 break;
7522 }
7523 }
7524 if (!med_matched)
7525 break;
7526 }
7527 bgp_dest_unlock_node(top);
7528
7529 return med_matched;
7530 }
7531
7532 /**
7533 * Toggles the route suppression status for this aggregate address
7534 * configuration.
7535 */
7536 void bgp_aggregate_toggle_suppressed(struct bgp_aggregate *aggregate,
7537 struct bgp *bgp, const struct prefix *p,
7538 afi_t afi, safi_t safi, bool suppress)
7539 {
7540 struct bgp_table *table = bgp->rib[afi][safi];
7541 const struct prefix *dest_p;
7542 struct bgp_dest *dest, *top;
7543 struct bgp_path_info *pi;
7544 bool toggle_suppression;
7545
7546 /* We've found a different MED we must revert any suppressed routes. */
7547 top = bgp_node_get(table, p);
7548 for (dest = bgp_node_get(table, p); dest;
7549 dest = bgp_route_next_until(dest, top)) {
7550 dest_p = bgp_dest_get_prefix(dest);
7551 if (dest_p->prefixlen <= p->prefixlen)
7552 continue;
7553
7554 toggle_suppression = false;
7555 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next) {
7556 if (BGP_PATH_HOLDDOWN(pi))
7557 continue;
7558 if (pi->sub_type == BGP_ROUTE_AGGREGATE)
7559 continue;
7560
7561 /* We are toggling suppression back. */
7562 if (suppress) {
7563 /* Suppress route if not suppressed already. */
7564 if (aggr_suppress_path(aggregate, pi))
7565 toggle_suppression = true;
7566 continue;
7567 }
7568
7569 /* Install route if there is no more suppression. */
7570 if (aggr_unsuppress_path(aggregate, pi))
7571 toggle_suppression = true;
7572 }
7573
7574 if (toggle_suppression)
7575 bgp_process(bgp, dest, afi, safi);
7576 }
7577 bgp_dest_unlock_node(top);
7578 }
7579
7580 /**
7581 * Aggregate address MED matching incremental test: this function is called
7582 * when the initial aggregation occurred and we are only testing a single
7583 * new path.
7584 *
7585 * In addition to testing and setting the MED validity it also installs back
7586 * suppressed routes (if summary is configured).
7587 *
7588 * Must not be called in `bgp_aggregate_route`.
7589 */
7590 static void bgp_aggregate_med_update(struct bgp_aggregate *aggregate,
7591 struct bgp *bgp, const struct prefix *p,
7592 afi_t afi, safi_t safi,
7593 struct bgp_path_info *pi)
7594 {
7595 /* MED matching disabled. */
7596 if (!aggregate->match_med)
7597 return;
7598
7599 /* Aggregation with different MED, recheck if we have got equal MEDs
7600 * now.
7601 */
7602 if (aggregate->med_mismatched &&
7603 bgp_aggregate_test_all_med(aggregate, bgp, p, afi, safi) &&
7604 aggregate->summary_only)
7605 bgp_aggregate_toggle_suppressed(aggregate, bgp, p, afi, safi,
7606 true);
7607 else
7608 bgp_aggregate_med_match(aggregate, bgp, pi);
7609
7610 /* No mismatches, just quit. */
7611 if (!aggregate->med_mismatched)
7612 return;
7613
7614 /* Route summarization is disabled. */
7615 if (!aggregate->summary_only)
7616 return;
7617
7618 bgp_aggregate_toggle_suppressed(aggregate, bgp, p, afi, safi, false);
7619 }
7620
7621 /* Update an aggregate as routes are added/removed from the BGP table */
7622 void bgp_aggregate_route(struct bgp *bgp, const struct prefix *p, afi_t afi,
7623 safi_t safi, struct bgp_aggregate *aggregate)
7624 {
7625 struct bgp_table *table;
7626 struct bgp_dest *top;
7627 struct bgp_dest *dest;
7628 uint8_t origin;
7629 struct aspath *aspath = NULL;
7630 struct community *community = NULL;
7631 struct ecommunity *ecommunity = NULL;
7632 struct lcommunity *lcommunity = NULL;
7633 struct bgp_path_info *pi;
7634 unsigned long match = 0;
7635 uint8_t atomic_aggregate = 0;
7636
7637 /* If the bgp instance is being deleted or self peer is deleted
7638 * then do not create aggregate route
7639 */
7640 if (CHECK_FLAG(bgp->flags, BGP_FLAG_DELETE_IN_PROGRESS)
7641 || (bgp->peer_self == NULL))
7642 return;
7643
7644 /* Initialize and test routes for MED difference. */
7645 if (aggregate->match_med)
7646 bgp_aggregate_test_all_med(aggregate, bgp, p, afi, safi);
7647
7648 /*
7649 * Reset aggregate count: we might've been called from route map
7650 * update so in that case we must retest all more specific routes.
7651 *
7652 * \see `bgp_route_map_process_update`.
7653 */
7654 aggregate->count = 0;
7655 aggregate->incomplete_origin_count = 0;
7656 aggregate->incomplete_origin_count = 0;
7657 aggregate->egp_origin_count = 0;
7658
7659 /* ORIGIN attribute: If at least one route among routes that are
7660 aggregated has ORIGIN with the value INCOMPLETE, then the
7661 aggregated route must have the ORIGIN attribute with the value
7662 INCOMPLETE. Otherwise, if at least one route among routes that
7663 are aggregated has ORIGIN with the value EGP, then the aggregated
7664 route must have the origin attribute with the value EGP. In all
7665 other case the value of the ORIGIN attribute of the aggregated
7666 route is INTERNAL. */
7667 origin = BGP_ORIGIN_IGP;
7668
7669 table = bgp->rib[afi][safi];
7670
7671 top = bgp_node_get(table, p);
7672 for (dest = bgp_node_get(table, p); dest;
7673 dest = bgp_route_next_until(dest, top)) {
7674 const struct prefix *dest_p = bgp_dest_get_prefix(dest);
7675
7676 if (dest_p->prefixlen <= p->prefixlen)
7677 continue;
7678
7679 /* If suppress fib is enabled and route not installed
7680 * in FIB, skip the route
7681 */
7682 if (!bgp_check_advertise(bgp, dest))
7683 continue;
7684
7685 match = 0;
7686
7687 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next) {
7688 if (BGP_PATH_HOLDDOWN(pi))
7689 continue;
7690
7691 if (pi->attr->flag
7692 & ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE))
7693 atomic_aggregate = 1;
7694
7695 if (pi->sub_type == BGP_ROUTE_AGGREGATE)
7696 continue;
7697
7698 /*
7699 * summary-only aggregate route suppress
7700 * aggregated route announcements.
7701 *
7702 * MED matching:
7703 * Don't create summaries if MED didn't match
7704 * otherwise neither the specific routes and the
7705 * aggregation will be announced.
7706 */
7707 if (aggregate->summary_only
7708 && AGGREGATE_MED_VALID(aggregate)) {
7709 if (aggr_suppress_path(aggregate, pi))
7710 match++;
7711 }
7712
7713 /*
7714 * Suppress more specific routes that match the route
7715 * map results.
7716 *
7717 * MED matching:
7718 * Don't suppress routes if MED matching is enabled and
7719 * it mismatched otherwise we might end up with no
7720 * routes for this path.
7721 */
7722 if (aggregate->suppress_map_name
7723 && AGGREGATE_MED_VALID(aggregate)
7724 && aggr_suppress_map_test(bgp, aggregate, pi)) {
7725 if (aggr_suppress_path(aggregate, pi))
7726 match++;
7727 }
7728
7729 aggregate->count++;
7730
7731 /*
7732 * If at least one route among routes that are
7733 * aggregated has ORIGIN with the value INCOMPLETE,
7734 * then the aggregated route MUST have the ORIGIN
7735 * attribute with the value INCOMPLETE. Otherwise, if
7736 * at least one route among routes that are aggregated
7737 * has ORIGIN with the value EGP, then the aggregated
7738 * route MUST have the ORIGIN attribute with the value
7739 * EGP.
7740 */
7741 switch (pi->attr->origin) {
7742 case BGP_ORIGIN_INCOMPLETE:
7743 aggregate->incomplete_origin_count++;
7744 break;
7745 case BGP_ORIGIN_EGP:
7746 aggregate->egp_origin_count++;
7747 break;
7748 default:
7749 /*Do nothing.
7750 */
7751 break;
7752 }
7753
7754 if (!aggregate->as_set)
7755 continue;
7756
7757 /*
7758 * as-set aggregate route generate origin, as path,
7759 * and community aggregation.
7760 */
7761 /* Compute aggregate route's as-path.
7762 */
7763 bgp_compute_aggregate_aspath_hash(aggregate,
7764 pi->attr->aspath);
7765
7766 /* Compute aggregate route's community.
7767 */
7768 if (bgp_attr_get_community(pi->attr))
7769 bgp_compute_aggregate_community_hash(
7770 aggregate,
7771 bgp_attr_get_community(pi->attr));
7772
7773 /* Compute aggregate route's extended community.
7774 */
7775 if (bgp_attr_get_ecommunity(pi->attr))
7776 bgp_compute_aggregate_ecommunity_hash(
7777 aggregate,
7778 bgp_attr_get_ecommunity(pi->attr));
7779
7780 /* Compute aggregate route's large community.
7781 */
7782 if (bgp_attr_get_lcommunity(pi->attr))
7783 bgp_compute_aggregate_lcommunity_hash(
7784 aggregate,
7785 bgp_attr_get_lcommunity(pi->attr));
7786 }
7787 if (match)
7788 bgp_process(bgp, dest, afi, safi);
7789 }
7790 if (aggregate->as_set) {
7791 bgp_compute_aggregate_aspath_val(aggregate);
7792 bgp_compute_aggregate_community_val(aggregate);
7793 bgp_compute_aggregate_ecommunity_val(aggregate);
7794 bgp_compute_aggregate_lcommunity_val(aggregate);
7795 }
7796
7797
7798 bgp_dest_unlock_node(top);
7799
7800
7801 if (aggregate->incomplete_origin_count > 0)
7802 origin = BGP_ORIGIN_INCOMPLETE;
7803 else if (aggregate->egp_origin_count > 0)
7804 origin = BGP_ORIGIN_EGP;
7805
7806 if (aggregate->origin != BGP_ORIGIN_UNSPECIFIED)
7807 origin = aggregate->origin;
7808
7809 if (aggregate->as_set) {
7810 if (aggregate->aspath)
7811 /* Retrieve aggregate route's as-path.
7812 */
7813 aspath = aspath_dup(aggregate->aspath);
7814
7815 if (aggregate->community)
7816 /* Retrieve aggregate route's community.
7817 */
7818 community = community_dup(aggregate->community);
7819
7820 if (aggregate->ecommunity)
7821 /* Retrieve aggregate route's ecommunity.
7822 */
7823 ecommunity = ecommunity_dup(aggregate->ecommunity);
7824
7825 if (aggregate->lcommunity)
7826 /* Retrieve aggregate route's lcommunity.
7827 */
7828 lcommunity = lcommunity_dup(aggregate->lcommunity);
7829 }
7830
7831 bgp_aggregate_install(bgp, afi, safi, p, origin, aspath, community,
7832 ecommunity, lcommunity, atomic_aggregate,
7833 aggregate);
7834 }
7835
7836 void bgp_aggregate_delete(struct bgp *bgp, const struct prefix *p, afi_t afi,
7837 safi_t safi, struct bgp_aggregate *aggregate)
7838 {
7839 struct bgp_table *table;
7840 struct bgp_dest *top;
7841 struct bgp_dest *dest;
7842 struct bgp_path_info *pi;
7843 unsigned long match;
7844
7845 table = bgp->rib[afi][safi];
7846
7847 /* If routes exists below this node, generate aggregate routes. */
7848 top = bgp_node_get(table, p);
7849 for (dest = bgp_node_get(table, p); dest;
7850 dest = bgp_route_next_until(dest, top)) {
7851 const struct prefix *dest_p = bgp_dest_get_prefix(dest);
7852
7853 if (dest_p->prefixlen <= p->prefixlen)
7854 continue;
7855 match = 0;
7856
7857 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next) {
7858 if (BGP_PATH_HOLDDOWN(pi))
7859 continue;
7860
7861 if (pi->sub_type == BGP_ROUTE_AGGREGATE)
7862 continue;
7863
7864 /*
7865 * This route is suppressed: attempt to unsuppress it.
7866 *
7867 * `aggr_unsuppress_path` will fail if this particular
7868 * aggregate route was not the suppressor.
7869 */
7870 if (pi->extra && pi->extra->aggr_suppressors &&
7871 listcount(pi->extra->aggr_suppressors)) {
7872 if (aggr_unsuppress_path(aggregate, pi))
7873 match++;
7874 }
7875
7876 aggregate->count--;
7877
7878 if (pi->attr->origin == BGP_ORIGIN_INCOMPLETE)
7879 aggregate->incomplete_origin_count--;
7880 else if (pi->attr->origin == BGP_ORIGIN_EGP)
7881 aggregate->egp_origin_count--;
7882
7883 if (aggregate->as_set) {
7884 /* Remove as-path from aggregate.
7885 */
7886 bgp_remove_aspath_from_aggregate_hash(
7887 aggregate,
7888 pi->attr->aspath);
7889
7890 if (bgp_attr_get_community(pi->attr))
7891 /* Remove community from aggregate.
7892 */
7893 bgp_remove_comm_from_aggregate_hash(
7894 aggregate,
7895 bgp_attr_get_community(
7896 pi->attr));
7897
7898 if (bgp_attr_get_ecommunity(pi->attr))
7899 /* Remove ecommunity from aggregate.
7900 */
7901 bgp_remove_ecomm_from_aggregate_hash(
7902 aggregate,
7903 bgp_attr_get_ecommunity(
7904 pi->attr));
7905
7906 if (bgp_attr_get_lcommunity(pi->attr))
7907 /* Remove lcommunity from aggregate.
7908 */
7909 bgp_remove_lcomm_from_aggregate_hash(
7910 aggregate,
7911 bgp_attr_get_lcommunity(
7912 pi->attr));
7913 }
7914 }
7915
7916 /* If this node was suppressed, process the change. */
7917 if (match)
7918 bgp_process(bgp, dest, afi, safi);
7919 }
7920 if (aggregate->as_set) {
7921 aspath_free(aggregate->aspath);
7922 aggregate->aspath = NULL;
7923 if (aggregate->community)
7924 community_free(&aggregate->community);
7925 if (aggregate->ecommunity)
7926 ecommunity_free(&aggregate->ecommunity);
7927 if (aggregate->lcommunity)
7928 lcommunity_free(&aggregate->lcommunity);
7929 }
7930
7931 bgp_dest_unlock_node(top);
7932 }
7933
7934 static void bgp_add_route_to_aggregate(struct bgp *bgp,
7935 const struct prefix *aggr_p,
7936 struct bgp_path_info *pinew, afi_t afi,
7937 safi_t safi,
7938 struct bgp_aggregate *aggregate)
7939 {
7940 uint8_t origin;
7941 struct aspath *aspath = NULL;
7942 uint8_t atomic_aggregate = 0;
7943 struct community *community = NULL;
7944 struct ecommunity *ecommunity = NULL;
7945 struct lcommunity *lcommunity = NULL;
7946
7947 /* If the bgp instance is being deleted or self peer is deleted
7948 * then do not create aggregate route
7949 */
7950 if (CHECK_FLAG(bgp->flags, BGP_FLAG_DELETE_IN_PROGRESS)
7951 || (bgp->peer_self == NULL))
7952 return;
7953
7954 /* ORIGIN attribute: If at least one route among routes that are
7955 * aggregated has ORIGIN with the value INCOMPLETE, then the
7956 * aggregated route must have the ORIGIN attribute with the value
7957 * INCOMPLETE. Otherwise, if at least one route among routes that
7958 * are aggregated has ORIGIN with the value EGP, then the aggregated
7959 * route must have the origin attribute with the value EGP. In all
7960 * other case the value of the ORIGIN attribute of the aggregated
7961 * route is INTERNAL.
7962 */
7963 origin = BGP_ORIGIN_IGP;
7964
7965 aggregate->count++;
7966
7967 /*
7968 * This must be called before `summary` check to avoid
7969 * "suppressing" twice.
7970 */
7971 if (aggregate->match_med)
7972 bgp_aggregate_med_update(aggregate, bgp, aggr_p, afi, safi,
7973 pinew);
7974
7975 if (aggregate->summary_only && AGGREGATE_MED_VALID(aggregate))
7976 aggr_suppress_path(aggregate, pinew);
7977
7978 if (aggregate->suppress_map_name && AGGREGATE_MED_VALID(aggregate)
7979 && aggr_suppress_map_test(bgp, aggregate, pinew))
7980 aggr_suppress_path(aggregate, pinew);
7981
7982 switch (pinew->attr->origin) {
7983 case BGP_ORIGIN_INCOMPLETE:
7984 aggregate->incomplete_origin_count++;
7985 break;
7986 case BGP_ORIGIN_EGP:
7987 aggregate->egp_origin_count++;
7988 break;
7989 default:
7990 /* Do nothing.
7991 */
7992 break;
7993 }
7994
7995 if (aggregate->incomplete_origin_count > 0)
7996 origin = BGP_ORIGIN_INCOMPLETE;
7997 else if (aggregate->egp_origin_count > 0)
7998 origin = BGP_ORIGIN_EGP;
7999
8000 if (aggregate->origin != BGP_ORIGIN_UNSPECIFIED)
8001 origin = aggregate->origin;
8002
8003 if (aggregate->as_set) {
8004 /* Compute aggregate route's as-path.
8005 */
8006 bgp_compute_aggregate_aspath(aggregate,
8007 pinew->attr->aspath);
8008
8009 /* Compute aggregate route's community.
8010 */
8011 if (bgp_attr_get_community(pinew->attr))
8012 bgp_compute_aggregate_community(
8013 aggregate, bgp_attr_get_community(pinew->attr));
8014
8015 /* Compute aggregate route's extended community.
8016 */
8017 if (bgp_attr_get_ecommunity(pinew->attr))
8018 bgp_compute_aggregate_ecommunity(
8019 aggregate,
8020 bgp_attr_get_ecommunity(pinew->attr));
8021
8022 /* Compute aggregate route's large community.
8023 */
8024 if (bgp_attr_get_lcommunity(pinew->attr))
8025 bgp_compute_aggregate_lcommunity(
8026 aggregate,
8027 bgp_attr_get_lcommunity(pinew->attr));
8028
8029 /* Retrieve aggregate route's as-path.
8030 */
8031 if (aggregate->aspath)
8032 aspath = aspath_dup(aggregate->aspath);
8033
8034 /* Retrieve aggregate route's community.
8035 */
8036 if (aggregate->community)
8037 community = community_dup(aggregate->community);
8038
8039 /* Retrieve aggregate route's ecommunity.
8040 */
8041 if (aggregate->ecommunity)
8042 ecommunity = ecommunity_dup(aggregate->ecommunity);
8043
8044 /* Retrieve aggregate route's lcommunity.
8045 */
8046 if (aggregate->lcommunity)
8047 lcommunity = lcommunity_dup(aggregate->lcommunity);
8048 }
8049
8050 bgp_aggregate_install(bgp, afi, safi, aggr_p, origin,
8051 aspath, community, ecommunity,
8052 lcommunity, atomic_aggregate, aggregate);
8053 }
8054
8055 static void bgp_remove_route_from_aggregate(struct bgp *bgp, afi_t afi,
8056 safi_t safi,
8057 struct bgp_path_info *pi,
8058 struct bgp_aggregate *aggregate,
8059 const struct prefix *aggr_p)
8060 {
8061 uint8_t origin;
8062 struct aspath *aspath = NULL;
8063 uint8_t atomic_aggregate = 0;
8064 struct community *community = NULL;
8065 struct ecommunity *ecommunity = NULL;
8066 struct lcommunity *lcommunity = NULL;
8067 unsigned long match = 0;
8068
8069 /* If the bgp instance is being deleted or self peer is deleted
8070 * then do not create aggregate route
8071 */
8072 if (CHECK_FLAG(bgp->flags, BGP_FLAG_DELETE_IN_PROGRESS)
8073 || (bgp->peer_self == NULL))
8074 return;
8075
8076 if (BGP_PATH_HOLDDOWN(pi))
8077 return;
8078
8079 if (pi->sub_type == BGP_ROUTE_AGGREGATE)
8080 return;
8081
8082 if (aggregate->summary_only && AGGREGATE_MED_VALID(aggregate))
8083 if (aggr_unsuppress_path(aggregate, pi))
8084 match++;
8085
8086 if (aggregate->suppress_map_name && AGGREGATE_MED_VALID(aggregate)
8087 && aggr_suppress_map_test(bgp, aggregate, pi))
8088 if (aggr_unsuppress_path(aggregate, pi))
8089 match++;
8090
8091 /*
8092 * This must be called after `summary`, `suppress-map` check to avoid
8093 * "unsuppressing" twice.
8094 */
8095 if (aggregate->match_med)
8096 bgp_aggregate_med_update(aggregate, bgp, aggr_p, afi, safi, pi);
8097
8098 if (aggregate->count > 0)
8099 aggregate->count--;
8100
8101 if (pi->attr->origin == BGP_ORIGIN_INCOMPLETE)
8102 aggregate->incomplete_origin_count--;
8103 else if (pi->attr->origin == BGP_ORIGIN_EGP)
8104 aggregate->egp_origin_count--;
8105
8106 if (aggregate->as_set) {
8107 /* Remove as-path from aggregate.
8108 */
8109 bgp_remove_aspath_from_aggregate(aggregate,
8110 pi->attr->aspath);
8111
8112 if (bgp_attr_get_community(pi->attr))
8113 /* Remove community from aggregate.
8114 */
8115 bgp_remove_community_from_aggregate(
8116 aggregate, bgp_attr_get_community(pi->attr));
8117
8118 if (bgp_attr_get_ecommunity(pi->attr))
8119 /* Remove ecommunity from aggregate.
8120 */
8121 bgp_remove_ecommunity_from_aggregate(
8122 aggregate, bgp_attr_get_ecommunity(pi->attr));
8123
8124 if (bgp_attr_get_lcommunity(pi->attr))
8125 /* Remove lcommunity from aggregate.
8126 */
8127 bgp_remove_lcommunity_from_aggregate(
8128 aggregate, bgp_attr_get_lcommunity(pi->attr));
8129 }
8130
8131 /* If this node was suppressed, process the change. */
8132 if (match)
8133 bgp_process(bgp, pi->net, afi, safi);
8134
8135 origin = BGP_ORIGIN_IGP;
8136 if (aggregate->incomplete_origin_count > 0)
8137 origin = BGP_ORIGIN_INCOMPLETE;
8138 else if (aggregate->egp_origin_count > 0)
8139 origin = BGP_ORIGIN_EGP;
8140
8141 if (aggregate->origin != BGP_ORIGIN_UNSPECIFIED)
8142 origin = aggregate->origin;
8143
8144 if (aggregate->as_set) {
8145 /* Retrieve aggregate route's as-path.
8146 */
8147 if (aggregate->aspath)
8148 aspath = aspath_dup(aggregate->aspath);
8149
8150 /* Retrieve aggregate route's community.
8151 */
8152 if (aggregate->community)
8153 community = community_dup(aggregate->community);
8154
8155 /* Retrieve aggregate route's ecommunity.
8156 */
8157 if (aggregate->ecommunity)
8158 ecommunity = ecommunity_dup(aggregate->ecommunity);
8159
8160 /* Retrieve aggregate route's lcommunity.
8161 */
8162 if (aggregate->lcommunity)
8163 lcommunity = lcommunity_dup(aggregate->lcommunity);
8164 }
8165
8166 bgp_aggregate_install(bgp, afi, safi, aggr_p, origin,
8167 aspath, community, ecommunity,
8168 lcommunity, atomic_aggregate, aggregate);
8169 }
8170
8171 void bgp_aggregate_increment(struct bgp *bgp, const struct prefix *p,
8172 struct bgp_path_info *pi, afi_t afi, safi_t safi)
8173 {
8174 struct bgp_dest *child;
8175 struct bgp_dest *dest;
8176 struct bgp_aggregate *aggregate;
8177 struct bgp_table *table;
8178
8179 table = bgp->aggregate[afi][safi];
8180
8181 /* No aggregates configured. */
8182 if (bgp_table_top_nolock(table) == NULL)
8183 return;
8184
8185 if (p->prefixlen == 0)
8186 return;
8187
8188 if (BGP_PATH_HOLDDOWN(pi))
8189 return;
8190
8191 /* If suppress fib is enabled and route not installed
8192 * in FIB, do not update the aggregate route
8193 */
8194 if (!bgp_check_advertise(bgp, pi->net))
8195 return;
8196
8197 child = bgp_node_get(table, p);
8198
8199 /* Aggregate address configuration check. */
8200 for (dest = child; dest; dest = bgp_dest_parent_nolock(dest)) {
8201 const struct prefix *dest_p = bgp_dest_get_prefix(dest);
8202
8203 aggregate = bgp_dest_get_bgp_aggregate_info(dest);
8204 if (aggregate != NULL && dest_p->prefixlen < p->prefixlen) {
8205 bgp_add_route_to_aggregate(bgp, dest_p, pi, afi, safi,
8206 aggregate);
8207 }
8208 }
8209 bgp_dest_unlock_node(child);
8210 }
8211
8212 void bgp_aggregate_decrement(struct bgp *bgp, const struct prefix *p,
8213 struct bgp_path_info *del, afi_t afi, safi_t safi)
8214 {
8215 struct bgp_dest *child;
8216 struct bgp_dest *dest;
8217 struct bgp_aggregate *aggregate;
8218 struct bgp_table *table;
8219
8220 table = bgp->aggregate[afi][safi];
8221
8222 /* No aggregates configured. */
8223 if (bgp_table_top_nolock(table) == NULL)
8224 return;
8225
8226 if (p->prefixlen == 0)
8227 return;
8228
8229 child = bgp_node_get(table, p);
8230
8231 /* Aggregate address configuration check. */
8232 for (dest = child; dest; dest = bgp_dest_parent_nolock(dest)) {
8233 const struct prefix *dest_p = bgp_dest_get_prefix(dest);
8234
8235 aggregate = bgp_dest_get_bgp_aggregate_info(dest);
8236 if (aggregate != NULL && dest_p->prefixlen < p->prefixlen) {
8237 bgp_remove_route_from_aggregate(bgp, afi, safi, del,
8238 aggregate, dest_p);
8239 }
8240 }
8241 bgp_dest_unlock_node(child);
8242 }
8243
8244 /* Aggregate route attribute. */
8245 #define AGGREGATE_SUMMARY_ONLY 1
8246 #define AGGREGATE_AS_SET 1
8247 #define AGGREGATE_AS_UNSET 0
8248
8249 static const char *bgp_origin2str(uint8_t origin)
8250 {
8251 switch (origin) {
8252 case BGP_ORIGIN_IGP:
8253 return "igp";
8254 case BGP_ORIGIN_EGP:
8255 return "egp";
8256 case BGP_ORIGIN_INCOMPLETE:
8257 return "incomplete";
8258 }
8259 return "n/a";
8260 }
8261
8262 static const char *bgp_rpki_validation2str(enum rpki_states v_state)
8263 {
8264 switch (v_state) {
8265 case RPKI_NOT_BEING_USED:
8266 return "not used";
8267 case RPKI_VALID:
8268 return "valid";
8269 case RPKI_NOTFOUND:
8270 return "not found";
8271 case RPKI_INVALID:
8272 return "invalid";
8273 }
8274
8275 assert(!"We should never get here this is a dev escape");
8276 return "ERROR";
8277 }
8278
8279 static int bgp_aggregate_unset(struct vty *vty, const char *prefix_str,
8280 afi_t afi, safi_t safi)
8281 {
8282 VTY_DECLVAR_CONTEXT(bgp, bgp);
8283 int ret;
8284 struct prefix p;
8285 struct bgp_dest *dest;
8286 struct bgp_aggregate *aggregate;
8287
8288 /* Convert string to prefix structure. */
8289 ret = str2prefix(prefix_str, &p);
8290 if (!ret) {
8291 vty_out(vty, "Malformed prefix\n");
8292 return CMD_WARNING_CONFIG_FAILED;
8293 }
8294 apply_mask(&p);
8295
8296 /* Old configuration check. */
8297 dest = bgp_node_lookup(bgp->aggregate[afi][safi], &p);
8298 if (!dest) {
8299 vty_out(vty,
8300 "%% There is no aggregate-address configuration.\n");
8301 return CMD_WARNING_CONFIG_FAILED;
8302 }
8303
8304 aggregate = bgp_dest_get_bgp_aggregate_info(dest);
8305 bgp_aggregate_delete(bgp, &p, afi, safi, aggregate);
8306 bgp_aggregate_install(bgp, afi, safi, &p, 0, NULL, NULL,
8307 NULL, NULL, 0, aggregate);
8308
8309 /* Unlock aggregate address configuration. */
8310 bgp_dest_set_bgp_aggregate_info(dest, NULL);
8311
8312 if (aggregate->community)
8313 community_free(&aggregate->community);
8314
8315 if (aggregate->community_hash) {
8316 /* Delete all communities in the hash.
8317 */
8318 hash_clean(aggregate->community_hash,
8319 bgp_aggr_community_remove);
8320 /* Free up the community_hash.
8321 */
8322 hash_free(aggregate->community_hash);
8323 }
8324
8325 if (aggregate->ecommunity)
8326 ecommunity_free(&aggregate->ecommunity);
8327
8328 if (aggregate->ecommunity_hash) {
8329 /* Delete all ecommunities in the hash.
8330 */
8331 hash_clean(aggregate->ecommunity_hash,
8332 bgp_aggr_ecommunity_remove);
8333 /* Free up the ecommunity_hash.
8334 */
8335 hash_free(aggregate->ecommunity_hash);
8336 }
8337
8338 if (aggregate->lcommunity)
8339 lcommunity_free(&aggregate->lcommunity);
8340
8341 if (aggregate->lcommunity_hash) {
8342 /* Delete all lcommunities in the hash.
8343 */
8344 hash_clean(aggregate->lcommunity_hash,
8345 bgp_aggr_lcommunity_remove);
8346 /* Free up the lcommunity_hash.
8347 */
8348 hash_free(aggregate->lcommunity_hash);
8349 }
8350
8351 if (aggregate->aspath)
8352 aspath_free(aggregate->aspath);
8353
8354 if (aggregate->aspath_hash) {
8355 /* Delete all as-paths in the hash.
8356 */
8357 hash_clean(aggregate->aspath_hash,
8358 bgp_aggr_aspath_remove);
8359 /* Free up the aspath_hash.
8360 */
8361 hash_free(aggregate->aspath_hash);
8362 }
8363
8364 bgp_aggregate_free(aggregate);
8365 bgp_dest_unlock_node(dest);
8366 bgp_dest_unlock_node(dest);
8367
8368 return CMD_SUCCESS;
8369 }
8370
8371 static int bgp_aggregate_set(struct vty *vty, const char *prefix_str, afi_t afi,
8372 safi_t safi, const char *rmap,
8373 uint8_t summary_only, uint8_t as_set,
8374 uint8_t origin, bool match_med,
8375 const char *suppress_map)
8376 {
8377 VTY_DECLVAR_CONTEXT(bgp, bgp);
8378 int ret;
8379 struct prefix p;
8380 struct bgp_dest *dest;
8381 struct bgp_aggregate *aggregate;
8382 uint8_t as_set_new = as_set;
8383
8384 if (suppress_map && summary_only) {
8385 vty_out(vty,
8386 "'summary-only' and 'suppress-map' can't be used at the same time\n");
8387 return CMD_WARNING_CONFIG_FAILED;
8388 }
8389
8390 /* Convert string to prefix structure. */
8391 ret = str2prefix(prefix_str, &p);
8392 if (!ret) {
8393 vty_out(vty, "Malformed prefix\n");
8394 return CMD_WARNING_CONFIG_FAILED;
8395 }
8396 apply_mask(&p);
8397
8398 if ((afi == AFI_IP && p.prefixlen == IPV4_MAX_BITLEN) ||
8399 (afi == AFI_IP6 && p.prefixlen == IPV6_MAX_BITLEN)) {
8400 vty_out(vty, "Specified prefix: %s will not result in any useful aggregation, disallowing\n",
8401 prefix_str);
8402 return CMD_WARNING_CONFIG_FAILED;
8403 }
8404
8405 /* Old configuration check. */
8406 dest = bgp_node_get(bgp->aggregate[afi][safi], &p);
8407 aggregate = bgp_dest_get_bgp_aggregate_info(dest);
8408
8409 if (aggregate) {
8410 vty_out(vty, "There is already same aggregate network.\n");
8411 /* try to remove the old entry */
8412 ret = bgp_aggregate_unset(vty, prefix_str, afi, safi);
8413 if (ret) {
8414 vty_out(vty, "Error deleting aggregate.\n");
8415 bgp_dest_unlock_node(dest);
8416 return CMD_WARNING_CONFIG_FAILED;
8417 }
8418 }
8419
8420 /* Make aggregate address structure. */
8421 aggregate = bgp_aggregate_new();
8422 aggregate->summary_only = summary_only;
8423 aggregate->match_med = match_med;
8424
8425 /* Network operators MUST NOT locally generate any new
8426 * announcements containing AS_SET or AS_CONFED_SET. If they have
8427 * announced routes with AS_SET or AS_CONFED_SET in them, then they
8428 * SHOULD withdraw those routes and re-announce routes for the
8429 * aggregate or component prefixes (i.e., the more-specific routes
8430 * subsumed by the previously aggregated route) without AS_SET
8431 * or AS_CONFED_SET in the updates.
8432 */
8433 if (bgp->reject_as_sets) {
8434 if (as_set == AGGREGATE_AS_SET) {
8435 as_set_new = AGGREGATE_AS_UNSET;
8436 zlog_warn(
8437 "%s: Ignoring as-set because `bgp reject-as-sets` is enabled.",
8438 __func__);
8439 vty_out(vty,
8440 "Ignoring as-set because `bgp reject-as-sets` is enabled.\n");
8441 }
8442 }
8443
8444 aggregate->as_set = as_set_new;
8445 aggregate->safi = safi;
8446 /* Override ORIGIN attribute if defined.
8447 * E.g.: Cisco and Juniper set ORIGIN for aggregated address
8448 * to IGP which is not what rfc4271 says.
8449 * This enables the same behavior, optionally.
8450 */
8451 aggregate->origin = origin;
8452
8453 if (rmap) {
8454 XFREE(MTYPE_ROUTE_MAP_NAME, aggregate->rmap.name);
8455 route_map_counter_decrement(aggregate->rmap.map);
8456 aggregate->rmap.name =
8457 XSTRDUP(MTYPE_ROUTE_MAP_NAME, rmap);
8458 aggregate->rmap.map = route_map_lookup_by_name(rmap);
8459 route_map_counter_increment(aggregate->rmap.map);
8460 }
8461
8462 if (suppress_map) {
8463 XFREE(MTYPE_ROUTE_MAP_NAME, aggregate->suppress_map_name);
8464 route_map_counter_decrement(aggregate->suppress_map);
8465
8466 aggregate->suppress_map_name =
8467 XSTRDUP(MTYPE_ROUTE_MAP_NAME, suppress_map);
8468 aggregate->suppress_map =
8469 route_map_lookup_by_name(aggregate->suppress_map_name);
8470 route_map_counter_increment(aggregate->suppress_map);
8471 }
8472
8473 bgp_dest_set_bgp_aggregate_info(dest, aggregate);
8474
8475 /* Aggregate address insert into BGP routing table. */
8476 bgp_aggregate_route(bgp, &p, afi, safi, aggregate);
8477
8478 return CMD_SUCCESS;
8479 }
8480
8481 DEFPY(aggregate_addressv4, aggregate_addressv4_cmd,
8482 "[no] aggregate-address <A.B.C.D/M$prefix|A.B.C.D$addr A.B.C.D$mask> [{"
8483 "as-set$as_set_s"
8484 "|summary-only$summary_only"
8485 "|route-map RMAP_NAME$rmap_name"
8486 "|origin <egp|igp|incomplete>$origin_s"
8487 "|matching-MED-only$match_med"
8488 "|suppress-map RMAP_NAME$suppress_map"
8489 "}]",
8490 NO_STR
8491 "Configure BGP aggregate entries\n"
8492 "Aggregate prefix\n"
8493 "Aggregate address\n"
8494 "Aggregate mask\n"
8495 "Generate AS set path information\n"
8496 "Filter more specific routes from updates\n"
8497 "Apply route map to aggregate network\n"
8498 "Route map name\n"
8499 "BGP origin code\n"
8500 "Remote EGP\n"
8501 "Local IGP\n"
8502 "Unknown heritage\n"
8503 "Only aggregate routes with matching MED\n"
8504 "Suppress the selected more specific routes\n"
8505 "Route map with the route selectors\n")
8506 {
8507 const char *prefix_s = NULL;
8508 safi_t safi = bgp_node_safi(vty);
8509 uint8_t origin = BGP_ORIGIN_UNSPECIFIED;
8510 int as_set = AGGREGATE_AS_UNSET;
8511 char prefix_buf[PREFIX2STR_BUFFER];
8512
8513 if (addr_str) {
8514 if (netmask_str2prefix_str(addr_str, mask_str, prefix_buf,
8515 sizeof(prefix_buf))
8516 == 0) {
8517 vty_out(vty, "%% Inconsistent address and mask\n");
8518 return CMD_WARNING_CONFIG_FAILED;
8519 }
8520 prefix_s = prefix_buf;
8521 } else
8522 prefix_s = prefix_str;
8523
8524 if (origin_s) {
8525 if (strcmp(origin_s, "egp") == 0)
8526 origin = BGP_ORIGIN_EGP;
8527 else if (strcmp(origin_s, "igp") == 0)
8528 origin = BGP_ORIGIN_IGP;
8529 else if (strcmp(origin_s, "incomplete") == 0)
8530 origin = BGP_ORIGIN_INCOMPLETE;
8531 }
8532
8533 if (as_set_s)
8534 as_set = AGGREGATE_AS_SET;
8535
8536 /* Handle configuration removal, otherwise installation. */
8537 if (no)
8538 return bgp_aggregate_unset(vty, prefix_s, AFI_IP, safi);
8539
8540 return bgp_aggregate_set(vty, prefix_s, AFI_IP, safi, rmap_name,
8541 summary_only != NULL, as_set, origin,
8542 match_med != NULL, suppress_map);
8543 }
8544
8545 DEFPY(aggregate_addressv6, aggregate_addressv6_cmd,
8546 "[no] aggregate-address X:X::X:X/M$prefix [{"
8547 "as-set$as_set_s"
8548 "|summary-only$summary_only"
8549 "|route-map RMAP_NAME$rmap_name"
8550 "|origin <egp|igp|incomplete>$origin_s"
8551 "|matching-MED-only$match_med"
8552 "|suppress-map RMAP_NAME$suppress_map"
8553 "}]",
8554 NO_STR
8555 "Configure BGP aggregate entries\n"
8556 "Aggregate prefix\n"
8557 "Generate AS set path information\n"
8558 "Filter more specific routes from updates\n"
8559 "Apply route map to aggregate network\n"
8560 "Route map name\n"
8561 "BGP origin code\n"
8562 "Remote EGP\n"
8563 "Local IGP\n"
8564 "Unknown heritage\n"
8565 "Only aggregate routes with matching MED\n"
8566 "Suppress the selected more specific routes\n"
8567 "Route map with the route selectors\n")
8568 {
8569 uint8_t origin = BGP_ORIGIN_UNSPECIFIED;
8570 int as_set = AGGREGATE_AS_UNSET;
8571
8572 if (origin_s) {
8573 if (strcmp(origin_s, "egp") == 0)
8574 origin = BGP_ORIGIN_EGP;
8575 else if (strcmp(origin_s, "igp") == 0)
8576 origin = BGP_ORIGIN_IGP;
8577 else if (strcmp(origin_s, "incomplete") == 0)
8578 origin = BGP_ORIGIN_INCOMPLETE;
8579 }
8580
8581 if (as_set_s)
8582 as_set = AGGREGATE_AS_SET;
8583
8584 /* Handle configuration removal, otherwise installation. */
8585 if (no)
8586 return bgp_aggregate_unset(vty, prefix_str, AFI_IP6,
8587 SAFI_UNICAST);
8588
8589 return bgp_aggregate_set(vty, prefix_str, AFI_IP6, SAFI_UNICAST,
8590 rmap_name, summary_only != NULL, as_set,
8591 origin, match_med != NULL, suppress_map);
8592 }
8593
8594 /* Redistribute route treatment. */
8595 void bgp_redistribute_add(struct bgp *bgp, struct prefix *p,
8596 const union g_addr *nexthop, ifindex_t ifindex,
8597 enum nexthop_types_t nhtype, uint8_t distance,
8598 enum blackhole_type bhtype, uint32_t metric,
8599 uint8_t type, unsigned short instance,
8600 route_tag_t tag)
8601 {
8602 struct bgp_path_info *new;
8603 struct bgp_path_info *bpi;
8604 struct bgp_path_info rmap_path;
8605 struct bgp_dest *bn;
8606 struct attr attr;
8607 struct attr *new_attr;
8608 afi_t afi;
8609 route_map_result_t ret;
8610 struct bgp_redist *red;
8611
8612 /* Make default attribute. */
8613 bgp_attr_default_set(&attr, bgp, BGP_ORIGIN_INCOMPLETE);
8614 /*
8615 * This must not be NULL to satisfy Coverity SA
8616 */
8617 assert(attr.aspath);
8618
8619 switch (nhtype) {
8620 case NEXTHOP_TYPE_IFINDEX:
8621 switch (p->family) {
8622 case AF_INET:
8623 attr.nexthop.s_addr = INADDR_ANY;
8624 attr.mp_nexthop_len = BGP_ATTR_NHLEN_IPV4;
8625 break;
8626 case AF_INET6:
8627 memset(&attr.mp_nexthop_global, 0,
8628 sizeof(attr.mp_nexthop_global));
8629 attr.mp_nexthop_len = BGP_ATTR_NHLEN_IPV6_GLOBAL;
8630 break;
8631 }
8632 break;
8633 case NEXTHOP_TYPE_IPV4:
8634 case NEXTHOP_TYPE_IPV4_IFINDEX:
8635 attr.nexthop = nexthop->ipv4;
8636 attr.mp_nexthop_len = BGP_ATTR_NHLEN_IPV4;
8637 break;
8638 case NEXTHOP_TYPE_IPV6:
8639 case NEXTHOP_TYPE_IPV6_IFINDEX:
8640 attr.mp_nexthop_global = nexthop->ipv6;
8641 attr.mp_nexthop_len = BGP_ATTR_NHLEN_IPV6_GLOBAL;
8642 break;
8643 case NEXTHOP_TYPE_BLACKHOLE:
8644 switch (p->family) {
8645 case AF_INET:
8646 attr.nexthop.s_addr = INADDR_ANY;
8647 attr.mp_nexthop_len = BGP_ATTR_NHLEN_IPV4;
8648 break;
8649 case AF_INET6:
8650 memset(&attr.mp_nexthop_global, 0,
8651 sizeof(attr.mp_nexthop_global));
8652 attr.mp_nexthop_len = BGP_ATTR_NHLEN_IPV6_GLOBAL;
8653 break;
8654 }
8655 attr.bh_type = bhtype;
8656 break;
8657 }
8658 attr.nh_type = nhtype;
8659 attr.nh_ifindex = ifindex;
8660
8661 attr.med = metric;
8662 attr.distance = distance;
8663 attr.flag |= ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC);
8664 attr.tag = tag;
8665
8666 if (metric)
8667 bgp_attr_set_aigp_metric(&attr, metric);
8668
8669 afi = family2afi(p->family);
8670
8671 red = bgp_redist_lookup(bgp, afi, type, instance);
8672 if (red) {
8673 struct attr attr_new;
8674
8675 /* Copy attribute for modification. */
8676 attr_new = attr;
8677
8678 if (red->redist_metric_flag) {
8679 attr_new.med = red->redist_metric;
8680 bgp_attr_set_aigp_metric(&attr_new, red->redist_metric);
8681 }
8682
8683 /* Apply route-map. */
8684 if (red->rmap.name) {
8685 memset(&rmap_path, 0, sizeof(rmap_path));
8686 rmap_path.peer = bgp->peer_self;
8687 rmap_path.attr = &attr_new;
8688
8689 SET_FLAG(bgp->peer_self->rmap_type,
8690 PEER_RMAP_TYPE_REDISTRIBUTE);
8691
8692 ret = route_map_apply(red->rmap.map, p, &rmap_path);
8693
8694 bgp->peer_self->rmap_type = 0;
8695
8696 if (ret == RMAP_DENYMATCH) {
8697 /* Free uninterned attribute. */
8698 bgp_attr_flush(&attr_new);
8699
8700 /* Unintern original. */
8701 aspath_unintern(&attr.aspath);
8702 bgp_redistribute_delete(bgp, p, type, instance);
8703 return;
8704 }
8705 }
8706
8707 if (bgp_in_graceful_shutdown(bgp))
8708 bgp_attr_add_gshut_community(&attr_new);
8709
8710 bn = bgp_afi_node_get(bgp->rib[afi][SAFI_UNICAST], afi,
8711 SAFI_UNICAST, p, NULL);
8712
8713 new_attr = bgp_attr_intern(&attr_new);
8714
8715 for (bpi = bgp_dest_get_bgp_path_info(bn); bpi; bpi = bpi->next)
8716 if (bpi->peer == bgp->peer_self
8717 && bpi->sub_type == BGP_ROUTE_REDISTRIBUTE)
8718 break;
8719
8720 if (bpi) {
8721 /* Ensure the (source route) type is updated. */
8722 bpi->type = type;
8723 if (attrhash_cmp(bpi->attr, new_attr)
8724 && !CHECK_FLAG(bpi->flags, BGP_PATH_REMOVED)) {
8725 bgp_attr_unintern(&new_attr);
8726 aspath_unintern(&attr.aspath);
8727 bgp_dest_unlock_node(bn);
8728 return;
8729 } else {
8730 /* The attribute is changed. */
8731 bgp_path_info_set_flag(bn, bpi,
8732 BGP_PATH_ATTR_CHANGED);
8733
8734 /* Rewrite BGP route information. */
8735 if (CHECK_FLAG(bpi->flags, BGP_PATH_REMOVED))
8736 bgp_path_info_restore(bn, bpi);
8737 else
8738 bgp_aggregate_decrement(
8739 bgp, p, bpi, afi, SAFI_UNICAST);
8740 bgp_attr_unintern(&bpi->attr);
8741 bpi->attr = new_attr;
8742 bpi->uptime = monotime(NULL);
8743
8744 /* Process change. */
8745 bgp_aggregate_increment(bgp, p, bpi, afi,
8746 SAFI_UNICAST);
8747 bgp_process(bgp, bn, afi, SAFI_UNICAST);
8748 bgp_dest_unlock_node(bn);
8749 aspath_unintern(&attr.aspath);
8750
8751 if ((bgp->inst_type == BGP_INSTANCE_TYPE_VRF)
8752 || (bgp->inst_type
8753 == BGP_INSTANCE_TYPE_DEFAULT)) {
8754
8755 vpn_leak_from_vrf_update(
8756 bgp_get_default(), bgp, bpi);
8757 }
8758 return;
8759 }
8760 }
8761
8762 new = info_make(type, BGP_ROUTE_REDISTRIBUTE, instance,
8763 bgp->peer_self, new_attr, bn);
8764 SET_FLAG(new->flags, BGP_PATH_VALID);
8765
8766 bgp_aggregate_increment(bgp, p, new, afi, SAFI_UNICAST);
8767 bgp_path_info_add(bn, new);
8768 bgp_dest_unlock_node(bn);
8769 SET_FLAG(bn->flags, BGP_NODE_FIB_INSTALLED);
8770 bgp_process(bgp, bn, afi, SAFI_UNICAST);
8771
8772 if ((bgp->inst_type == BGP_INSTANCE_TYPE_VRF)
8773 || (bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
8774
8775 vpn_leak_from_vrf_update(bgp_get_default(), bgp, new);
8776 }
8777 }
8778
8779 /* Unintern original. */
8780 aspath_unintern(&attr.aspath);
8781 }
8782
8783 void bgp_redistribute_delete(struct bgp *bgp, struct prefix *p, uint8_t type,
8784 unsigned short instance)
8785 {
8786 afi_t afi;
8787 struct bgp_dest *dest;
8788 struct bgp_path_info *pi;
8789 struct bgp_redist *red;
8790
8791 afi = family2afi(p->family);
8792
8793 red = bgp_redist_lookup(bgp, afi, type, instance);
8794 if (red) {
8795 dest = bgp_afi_node_get(bgp->rib[afi][SAFI_UNICAST], afi,
8796 SAFI_UNICAST, p, NULL);
8797
8798 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next)
8799 if (pi->peer == bgp->peer_self && pi->type == type)
8800 break;
8801
8802 if (pi) {
8803 if ((bgp->inst_type == BGP_INSTANCE_TYPE_VRF)
8804 || (bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
8805
8806 vpn_leak_from_vrf_withdraw(bgp_get_default(),
8807 bgp, pi);
8808 }
8809 bgp_aggregate_decrement(bgp, p, pi, afi, SAFI_UNICAST);
8810 bgp_path_info_delete(dest, pi);
8811 bgp_process(bgp, dest, afi, SAFI_UNICAST);
8812 }
8813 bgp_dest_unlock_node(dest);
8814 }
8815 }
8816
8817 /* Withdraw specified route type's route. */
8818 void bgp_redistribute_withdraw(struct bgp *bgp, afi_t afi, int type,
8819 unsigned short instance)
8820 {
8821 struct bgp_dest *dest;
8822 struct bgp_path_info *pi;
8823 struct bgp_table *table;
8824
8825 table = bgp->rib[afi][SAFI_UNICAST];
8826
8827 for (dest = bgp_table_top(table); dest; dest = bgp_route_next(dest)) {
8828 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next)
8829 if (pi->peer == bgp->peer_self && pi->type == type
8830 && pi->instance == instance)
8831 break;
8832
8833 if (pi) {
8834 if ((bgp->inst_type == BGP_INSTANCE_TYPE_VRF)
8835 || (bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)) {
8836
8837 vpn_leak_from_vrf_withdraw(bgp_get_default(),
8838 bgp, pi);
8839 }
8840 bgp_aggregate_decrement(bgp, bgp_dest_get_prefix(dest),
8841 pi, afi, SAFI_UNICAST);
8842 bgp_path_info_delete(dest, pi);
8843 if (!CHECK_FLAG(bgp->flags,
8844 BGP_FLAG_DELETE_IN_PROGRESS))
8845 bgp_process(bgp, dest, afi, SAFI_UNICAST);
8846 else
8847 bgp_path_info_reap(dest, pi);
8848 }
8849 }
8850 }
8851
8852 /* Static function to display route. */
8853 static void route_vty_out_route(struct bgp_dest *dest, const struct prefix *p,
8854 struct vty *vty, json_object *json, bool wide)
8855 {
8856 int len = 0;
8857 char buf[INET6_ADDRSTRLEN];
8858
8859 if (p->family == AF_INET) {
8860 if (!json) {
8861 len = vty_out(vty, "%pFX", p);
8862 } else {
8863 json_object_string_add(json, "prefix",
8864 inet_ntop(p->family,
8865 &p->u.prefix, buf,
8866 sizeof(buf)));
8867 json_object_int_add(json, "prefixLen", p->prefixlen);
8868 json_object_string_addf(json, "network", "%pFX", p);
8869 json_object_int_add(json, "version", dest->version);
8870 }
8871 } else if (p->family == AF_ETHERNET) {
8872 len = vty_out(vty, "%pFX", p);
8873 } else if (p->family == AF_EVPN) {
8874 if (!json)
8875 len = vty_out(vty, "%pFX", (struct prefix_evpn *)p);
8876 else
8877 bgp_evpn_route2json((struct prefix_evpn *)p, json);
8878 } else if (p->family == AF_FLOWSPEC) {
8879 route_vty_out_flowspec(vty, p, NULL,
8880 json ?
8881 NLRI_STRING_FORMAT_JSON_SIMPLE :
8882 NLRI_STRING_FORMAT_MIN, json);
8883 } else {
8884 if (!json)
8885 len = vty_out(vty, "%pFX", p);
8886 else {
8887 json_object_string_add(json, "prefix",
8888 inet_ntop(p->family,
8889 &p->u.prefix, buf,
8890 sizeof(buf)));
8891 json_object_int_add(json, "prefixLen", p->prefixlen);
8892 json_object_string_addf(json, "network", "%pFX", p);
8893 json_object_int_add(json, "version", dest->version);
8894 }
8895 }
8896
8897 if (!json) {
8898 len = wide ? (45 - len) : (17 - len);
8899 if (len < 1)
8900 vty_out(vty, "\n%*s", 20, " ");
8901 else
8902 vty_out(vty, "%*s", len, " ");
8903 }
8904 }
8905
8906 enum bgp_display_type {
8907 normal_list,
8908 };
8909
8910 const char *bgp_path_selection_reason2str(enum bgp_path_selection_reason reason)
8911 {
8912 switch (reason) {
8913 case bgp_path_selection_none:
8914 return "Nothing to Select";
8915 case bgp_path_selection_first:
8916 return "First path received";
8917 case bgp_path_selection_evpn_sticky_mac:
8918 return "EVPN Sticky Mac";
8919 case bgp_path_selection_evpn_seq:
8920 return "EVPN sequence number";
8921 case bgp_path_selection_evpn_lower_ip:
8922 return "EVPN lower IP";
8923 case bgp_path_selection_evpn_local_path:
8924 return "EVPN local ES path";
8925 case bgp_path_selection_evpn_non_proxy:
8926 return "EVPN non proxy";
8927 case bgp_path_selection_weight:
8928 return "Weight";
8929 case bgp_path_selection_local_pref:
8930 return "Local Pref";
8931 case bgp_path_selection_accept_own:
8932 return "Accept Own";
8933 case bgp_path_selection_local_route:
8934 return "Local Route";
8935 case bgp_path_selection_aigp:
8936 return "AIGP";
8937 case bgp_path_selection_confed_as_path:
8938 return "Confederation based AS Path";
8939 case bgp_path_selection_as_path:
8940 return "AS Path";
8941 case bgp_path_selection_origin:
8942 return "Origin";
8943 case bgp_path_selection_med:
8944 return "MED";
8945 case bgp_path_selection_peer:
8946 return "Peer Type";
8947 case bgp_path_selection_confed:
8948 return "Confed Peer Type";
8949 case bgp_path_selection_igp_metric:
8950 return "IGP Metric";
8951 case bgp_path_selection_older:
8952 return "Older Path";
8953 case bgp_path_selection_router_id:
8954 return "Router ID";
8955 case bgp_path_selection_cluster_length:
8956 return "Cluster length";
8957 case bgp_path_selection_stale:
8958 return "Path Staleness";
8959 case bgp_path_selection_local_configured:
8960 return "Locally configured route";
8961 case bgp_path_selection_neighbor_ip:
8962 return "Neighbor IP";
8963 case bgp_path_selection_default:
8964 return "Nothing left to compare";
8965 }
8966 return "Invalid (internal error)";
8967 }
8968
8969 /* Print the short form route status for a bgp_path_info */
8970 static void route_vty_short_status_out(struct vty *vty,
8971 struct bgp_path_info *path,
8972 const struct prefix *p,
8973 json_object *json_path)
8974 {
8975 enum rpki_states rpki_state = RPKI_NOT_BEING_USED;
8976
8977 if (json_path) {
8978
8979 /* Route status display. */
8980 if (CHECK_FLAG(path->flags, BGP_PATH_REMOVED))
8981 json_object_boolean_true_add(json_path, "removed");
8982
8983 if (CHECK_FLAG(path->flags, BGP_PATH_STALE))
8984 json_object_boolean_true_add(json_path, "stale");
8985
8986 if (path->extra && bgp_path_suppressed(path))
8987 json_object_boolean_true_add(json_path, "suppressed");
8988
8989 if (CHECK_FLAG(path->flags, BGP_PATH_VALID)
8990 && !CHECK_FLAG(path->flags, BGP_PATH_HISTORY))
8991 json_object_boolean_true_add(json_path, "valid");
8992
8993 /* Selected */
8994 if (CHECK_FLAG(path->flags, BGP_PATH_HISTORY))
8995 json_object_boolean_true_add(json_path, "history");
8996
8997 if (CHECK_FLAG(path->flags, BGP_PATH_DAMPED))
8998 json_object_boolean_true_add(json_path, "damped");
8999
9000 if (CHECK_FLAG(path->flags, BGP_PATH_SELECTED)) {
9001 json_object_boolean_true_add(json_path, "bestpath");
9002 json_object_string_add(json_path, "selectionReason",
9003 bgp_path_selection_reason2str(
9004 path->net->reason));
9005 }
9006
9007 if (CHECK_FLAG(path->flags, BGP_PATH_MULTIPATH))
9008 json_object_boolean_true_add(json_path, "multipath");
9009
9010 /* Internal route. */
9011 if ((path->peer->as)
9012 && (path->peer->as == path->peer->local_as))
9013 json_object_string_add(json_path, "pathFrom",
9014 "internal");
9015 else
9016 json_object_string_add(json_path, "pathFrom",
9017 "external");
9018
9019 return;
9020 }
9021
9022 /* RPKI validation state */
9023 rpki_state =
9024 hook_call(bgp_rpki_prefix_status, path->peer, path->attr, p);
9025
9026 if (rpki_state == RPKI_VALID)
9027 vty_out(vty, "V");
9028 else if (rpki_state == RPKI_INVALID)
9029 vty_out(vty, "I");
9030 else if (rpki_state == RPKI_NOTFOUND)
9031 vty_out(vty, "N");
9032 else
9033 vty_out(vty, " ");
9034
9035 /* Route status display. */
9036 if (CHECK_FLAG(path->flags, BGP_PATH_REMOVED))
9037 vty_out(vty, "R");
9038 else if (CHECK_FLAG(path->flags, BGP_PATH_STALE))
9039 vty_out(vty, "S");
9040 else if (bgp_path_suppressed(path))
9041 vty_out(vty, "s");
9042 else if (CHECK_FLAG(path->flags, BGP_PATH_VALID)
9043 && !CHECK_FLAG(path->flags, BGP_PATH_HISTORY))
9044 vty_out(vty, "*");
9045 else
9046 vty_out(vty, " ");
9047
9048 /* Selected */
9049 if (CHECK_FLAG(path->flags, BGP_PATH_HISTORY))
9050 vty_out(vty, "h");
9051 else if (CHECK_FLAG(path->flags, BGP_PATH_DAMPED))
9052 vty_out(vty, "d");
9053 else if (CHECK_FLAG(path->flags, BGP_PATH_SELECTED))
9054 vty_out(vty, ">");
9055 else if (CHECK_FLAG(path->flags, BGP_PATH_MULTIPATH))
9056 vty_out(vty, "=");
9057 else
9058 vty_out(vty, " ");
9059
9060 /* Internal route. */
9061 if (path->peer && (path->peer->as)
9062 && (path->peer->as == path->peer->local_as))
9063 vty_out(vty, "i");
9064 else
9065 vty_out(vty, " ");
9066 }
9067
9068 static char *bgp_nexthop_hostname(struct peer *peer,
9069 struct bgp_nexthop_cache *bnc)
9070 {
9071 if (peer->hostname
9072 && CHECK_FLAG(peer->bgp->flags, BGP_FLAG_SHOW_NEXTHOP_HOSTNAME))
9073 return peer->hostname;
9074 return NULL;
9075 }
9076
9077 /* called from terminal list command */
9078 void route_vty_out(struct vty *vty, const struct prefix *p,
9079 struct bgp_path_info *path, int display, safi_t safi,
9080 json_object *json_paths, bool wide)
9081 {
9082 int len;
9083 struct attr *attr = path->attr;
9084 json_object *json_path = NULL;
9085 json_object *json_nexthops = NULL;
9086 json_object *json_nexthop_global = NULL;
9087 json_object *json_nexthop_ll = NULL;
9088 json_object *json_ext_community = NULL;
9089 char vrf_id_str[VRF_NAMSIZ] = {0};
9090 bool nexthop_self =
9091 CHECK_FLAG(path->flags, BGP_PATH_ANNC_NH_SELF) ? true : false;
9092 bool nexthop_othervrf = false;
9093 vrf_id_t nexthop_vrfid = VRF_DEFAULT;
9094 const char *nexthop_vrfname = VRF_DEFAULT_NAME;
9095 char *nexthop_hostname =
9096 bgp_nexthop_hostname(path->peer, path->nexthop);
9097 char esi_buf[ESI_STR_LEN];
9098
9099 if (json_paths)
9100 json_path = json_object_new_object();
9101
9102 /* short status lead text */
9103 route_vty_short_status_out(vty, path, p, json_path);
9104
9105 if (!json_paths) {
9106 /* print prefix and mask */
9107 if (!display)
9108 route_vty_out_route(path->net, p, vty, json_path, wide);
9109 else
9110 vty_out(vty, "%*s", (wide ? 45 : 17), " ");
9111 } else {
9112 route_vty_out_route(path->net, p, vty, json_path, wide);
9113 }
9114
9115 /*
9116 * If vrf id of nexthop is different from that of prefix,
9117 * set up printable string to append
9118 */
9119 if (path->extra && path->extra->bgp_orig) {
9120 const char *self = "";
9121
9122 if (nexthop_self)
9123 self = "<";
9124
9125 nexthop_othervrf = true;
9126 nexthop_vrfid = path->extra->bgp_orig->vrf_id;
9127
9128 if (path->extra->bgp_orig->vrf_id == VRF_UNKNOWN)
9129 snprintf(vrf_id_str, sizeof(vrf_id_str),
9130 "@%s%s", VRFID_NONE_STR, self);
9131 else
9132 snprintf(vrf_id_str, sizeof(vrf_id_str), "@%u%s",
9133 path->extra->bgp_orig->vrf_id, self);
9134
9135 if (path->extra->bgp_orig->inst_type
9136 != BGP_INSTANCE_TYPE_DEFAULT)
9137
9138 nexthop_vrfname = path->extra->bgp_orig->name;
9139 } else {
9140 const char *self = "";
9141
9142 if (nexthop_self)
9143 self = "<";
9144
9145 snprintf(vrf_id_str, sizeof(vrf_id_str), "%s", self);
9146 }
9147
9148 /*
9149 * For ENCAP and EVPN routes, nexthop address family is not
9150 * neccessarily the same as the prefix address family.
9151 * Both SAFI_MPLS_VPN and SAFI_ENCAP use the MP nexthop field
9152 * EVPN routes are also exchanged with a MP nexthop. Currently,
9153 * this
9154 * is only IPv4, the value will be present in either
9155 * attr->nexthop or
9156 * attr->mp_nexthop_global_in
9157 */
9158 if ((safi == SAFI_ENCAP) || (safi == SAFI_MPLS_VPN)) {
9159 char nexthop[128];
9160 int af = NEXTHOP_FAMILY(attr->mp_nexthop_len);
9161
9162 switch (af) {
9163 case AF_INET:
9164 snprintfrr(nexthop, sizeof(nexthop), "%pI4",
9165 &attr->mp_nexthop_global_in);
9166 break;
9167 case AF_INET6:
9168 snprintfrr(nexthop, sizeof(nexthop), "%pI6",
9169 &attr->mp_nexthop_global);
9170 break;
9171 default:
9172 snprintf(nexthop, sizeof(nexthop), "?");
9173 break;
9174 }
9175
9176 if (json_paths) {
9177 json_nexthop_global = json_object_new_object();
9178
9179 json_object_string_add(json_nexthop_global, "ip",
9180 nexthop);
9181
9182 if (path->peer->hostname)
9183 json_object_string_add(json_nexthop_global,
9184 "hostname",
9185 path->peer->hostname);
9186
9187 json_object_string_add(json_nexthop_global, "afi",
9188 (af == AF_INET) ? "ipv4"
9189 : "ipv6");
9190 json_object_boolean_true_add(json_nexthop_global,
9191 "used");
9192 } else {
9193 if (nexthop_hostname)
9194 len = vty_out(vty, "%s(%s)%s", nexthop,
9195 nexthop_hostname, vrf_id_str);
9196 else
9197 len = vty_out(vty, "%s%s", nexthop, vrf_id_str);
9198
9199 len = wide ? (41 - len) : (16 - len);
9200 if (len < 1)
9201 vty_out(vty, "\n%*s", 36, " ");
9202 else
9203 vty_out(vty, "%*s", len, " ");
9204 }
9205 } else if (safi == SAFI_EVPN) {
9206 if (json_paths) {
9207 json_nexthop_global = json_object_new_object();
9208
9209 json_object_string_addf(json_nexthop_global, "ip",
9210 "%pI4",
9211 &attr->mp_nexthop_global_in);
9212
9213 if (path->peer->hostname)
9214 json_object_string_add(json_nexthop_global,
9215 "hostname",
9216 path->peer->hostname);
9217
9218 json_object_string_add(json_nexthop_global, "afi",
9219 "ipv4");
9220 json_object_boolean_true_add(json_nexthop_global,
9221 "used");
9222 } else {
9223 if (nexthop_hostname)
9224 len = vty_out(vty, "%pI4(%s)%s",
9225 &attr->mp_nexthop_global_in,
9226 nexthop_hostname, vrf_id_str);
9227 else
9228 len = vty_out(vty, "%pI4%s",
9229 &attr->mp_nexthop_global_in,
9230 vrf_id_str);
9231
9232 len = wide ? (41 - len) : (16 - len);
9233 if (len < 1)
9234 vty_out(vty, "\n%*s", 36, " ");
9235 else
9236 vty_out(vty, "%*s", len, " ");
9237 }
9238 } else if (safi == SAFI_FLOWSPEC) {
9239 if (attr->nexthop.s_addr != INADDR_ANY) {
9240 if (json_paths) {
9241 json_nexthop_global = json_object_new_object();
9242
9243 json_object_string_add(json_nexthop_global,
9244 "afi", "ipv4");
9245 json_object_string_addf(json_nexthop_global,
9246 "ip", "%pI4",
9247 &attr->nexthop);
9248
9249 if (path->peer->hostname)
9250 json_object_string_add(
9251 json_nexthop_global, "hostname",
9252 path->peer->hostname);
9253
9254 json_object_boolean_true_add(
9255 json_nexthop_global,
9256 "used");
9257 } else {
9258 if (nexthop_hostname)
9259 len = vty_out(vty, "%pI4(%s)%s",
9260 &attr->nexthop,
9261 nexthop_hostname,
9262 vrf_id_str);
9263 else
9264 len = vty_out(vty, "%pI4%s",
9265 &attr->nexthop,
9266 vrf_id_str);
9267
9268 len = wide ? (41 - len) : (16 - len);
9269 if (len < 1)
9270 vty_out(vty, "\n%*s", 36, " ");
9271 else
9272 vty_out(vty, "%*s", len, " ");
9273 }
9274 }
9275 } else if (p->family == AF_INET && !BGP_ATTR_MP_NEXTHOP_LEN_IP6(attr)) {
9276 if (json_paths) {
9277 json_nexthop_global = json_object_new_object();
9278
9279 json_object_string_addf(json_nexthop_global, "ip",
9280 "%pI4", &attr->nexthop);
9281
9282 if (path->peer->hostname)
9283 json_object_string_add(json_nexthop_global,
9284 "hostname",
9285 path->peer->hostname);
9286
9287 json_object_string_add(json_nexthop_global, "afi",
9288 "ipv4");
9289 json_object_boolean_true_add(json_nexthop_global,
9290 "used");
9291 } else {
9292 if (nexthop_hostname)
9293 len = vty_out(vty, "%pI4(%s)%s", &attr->nexthop,
9294 nexthop_hostname, vrf_id_str);
9295 else
9296 len = vty_out(vty, "%pI4%s", &attr->nexthop,
9297 vrf_id_str);
9298
9299 len = wide ? (41 - len) : (16 - len);
9300 if (len < 1)
9301 vty_out(vty, "\n%*s", 36, " ");
9302 else
9303 vty_out(vty, "%*s", len, " ");
9304 }
9305 }
9306
9307 /* IPv6 Next Hop */
9308 else if (p->family == AF_INET6 || BGP_ATTR_MP_NEXTHOP_LEN_IP6(attr)) {
9309 if (json_paths) {
9310 json_nexthop_global = json_object_new_object();
9311 json_object_string_addf(json_nexthop_global, "ip",
9312 "%pI6",
9313 &attr->mp_nexthop_global);
9314
9315 if (path->peer->hostname)
9316 json_object_string_add(json_nexthop_global,
9317 "hostname",
9318 path->peer->hostname);
9319
9320 json_object_string_add(json_nexthop_global, "afi",
9321 "ipv6");
9322 json_object_string_add(json_nexthop_global, "scope",
9323 "global");
9324
9325 /* We display both LL & GL if both have been
9326 * received */
9327 if ((attr->mp_nexthop_len
9328 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL)
9329 || (path->peer->conf_if)) {
9330 json_nexthop_ll = json_object_new_object();
9331 json_object_string_addf(
9332 json_nexthop_ll, "ip", "%pI6",
9333 &attr->mp_nexthop_local);
9334
9335 if (path->peer->hostname)
9336 json_object_string_add(
9337 json_nexthop_ll, "hostname",
9338 path->peer->hostname);
9339
9340 json_object_string_add(json_nexthop_ll, "afi",
9341 "ipv6");
9342 json_object_string_add(json_nexthop_ll, "scope",
9343 "link-local");
9344
9345 if ((IPV6_ADDR_CMP(&attr->mp_nexthop_global,
9346 &attr->mp_nexthop_local)
9347 != 0)
9348 && !attr->mp_nexthop_prefer_global)
9349 json_object_boolean_true_add(
9350 json_nexthop_ll, "used");
9351 else
9352 json_object_boolean_true_add(
9353 json_nexthop_global, "used");
9354 } else
9355 json_object_boolean_true_add(
9356 json_nexthop_global, "used");
9357 } else {
9358 /* Display LL if LL/Global both in table unless
9359 * prefer-global is set */
9360 if (((attr->mp_nexthop_len
9361 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL)
9362 && !attr->mp_nexthop_prefer_global)
9363 || (path->peer->conf_if)) {
9364 if (path->peer->conf_if) {
9365 len = vty_out(vty, "%s",
9366 path->peer->conf_if);
9367 /* len of IPv6 addr + max len of def
9368 * ifname */
9369 len = wide ? (41 - len) : (16 - len);
9370
9371 if (len < 1)
9372 vty_out(vty, "\n%*s", 36, " ");
9373 else
9374 vty_out(vty, "%*s", len, " ");
9375 } else {
9376 if (nexthop_hostname)
9377 len = vty_out(
9378 vty, "%pI6(%s)%s",
9379 &attr->mp_nexthop_local,
9380 nexthop_hostname,
9381 vrf_id_str);
9382 else
9383 len = vty_out(
9384 vty, "%pI6%s",
9385 &attr->mp_nexthop_local,
9386 vrf_id_str);
9387
9388 len = wide ? (41 - len) : (16 - len);
9389
9390 if (len < 1)
9391 vty_out(vty, "\n%*s", 36, " ");
9392 else
9393 vty_out(vty, "%*s", len, " ");
9394 }
9395 } else {
9396 if (nexthop_hostname)
9397 len = vty_out(vty, "%pI6(%s)%s",
9398 &attr->mp_nexthop_global,
9399 nexthop_hostname,
9400 vrf_id_str);
9401 else
9402 len = vty_out(vty, "%pI6%s",
9403 &attr->mp_nexthop_global,
9404 vrf_id_str);
9405
9406 len = wide ? (41 - len) : (16 - len);
9407
9408 if (len < 1)
9409 vty_out(vty, "\n%*s", 36, " ");
9410 else
9411 vty_out(vty, "%*s", len, " ");
9412 }
9413 }
9414 }
9415
9416 /* MED/Metric */
9417 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC))
9418 if (json_paths)
9419 json_object_int_add(json_path, "metric", attr->med);
9420 else if (wide)
9421 vty_out(vty, "%7u", attr->med);
9422 else
9423 vty_out(vty, "%10u", attr->med);
9424 else if (!json_paths) {
9425 if (wide)
9426 vty_out(vty, "%*s", 7, " ");
9427 else
9428 vty_out(vty, "%*s", 10, " ");
9429 }
9430
9431 /* Local Pref */
9432 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF))
9433 if (json_paths)
9434 json_object_int_add(json_path, "locPrf",
9435 attr->local_pref);
9436 else
9437 vty_out(vty, "%7u", attr->local_pref);
9438 else if (!json_paths)
9439 vty_out(vty, " ");
9440
9441 if (json_paths)
9442 json_object_int_add(json_path, "weight", attr->weight);
9443 else
9444 vty_out(vty, "%7u ", attr->weight);
9445
9446 if (json_paths)
9447 json_object_string_addf(json_path, "peerId", "%pSU",
9448 &path->peer->su);
9449
9450 /* Print aspath */
9451 if (attr->aspath) {
9452 if (json_paths)
9453 json_object_string_add(json_path, "path",
9454 attr->aspath->str);
9455 else
9456 aspath_print_vty(vty, attr->aspath);
9457 }
9458
9459 /* Print origin */
9460 if (json_paths)
9461 json_object_string_add(json_path, "origin",
9462 bgp_origin_long_str[attr->origin]);
9463 else
9464 vty_out(vty, "%s", bgp_origin_str[attr->origin]);
9465
9466 if (json_paths) {
9467 if (bgp_evpn_is_esi_valid(&attr->esi)) {
9468 json_object_string_add(json_path, "esi",
9469 esi_to_str(&attr->esi,
9470 esi_buf, sizeof(esi_buf)));
9471 }
9472 if (safi == SAFI_EVPN &&
9473 attr->flag & ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES)) {
9474 json_ext_community = json_object_new_object();
9475 json_object_string_add(
9476 json_ext_community, "string",
9477 bgp_attr_get_ecommunity(attr)->str);
9478 json_object_object_add(json_path,
9479 "extendedCommunity",
9480 json_ext_community);
9481 }
9482
9483 if (nexthop_self)
9484 json_object_boolean_true_add(json_path,
9485 "announceNexthopSelf");
9486 if (nexthop_othervrf) {
9487 json_object_string_add(json_path, "nhVrfName",
9488 nexthop_vrfname);
9489
9490 json_object_int_add(json_path, "nhVrfId",
9491 ((nexthop_vrfid == VRF_UNKNOWN)
9492 ? -1
9493 : (int)nexthop_vrfid));
9494 }
9495 }
9496
9497 if (json_paths) {
9498 if (json_nexthop_global || json_nexthop_ll) {
9499 json_nexthops = json_object_new_array();
9500
9501 if (json_nexthop_global)
9502 json_object_array_add(json_nexthops,
9503 json_nexthop_global);
9504
9505 if (json_nexthop_ll)
9506 json_object_array_add(json_nexthops,
9507 json_nexthop_ll);
9508
9509 json_object_object_add(json_path, "nexthops",
9510 json_nexthops);
9511 }
9512
9513 json_object_array_add(json_paths, json_path);
9514 } else {
9515 vty_out(vty, "\n");
9516
9517 if (safi == SAFI_EVPN) {
9518 if (bgp_evpn_is_esi_valid(&attr->esi)) {
9519 /* XXX - add these params to the json out */
9520 vty_out(vty, "%*s", 20, " ");
9521 vty_out(vty, "ESI:%s",
9522 esi_to_str(&attr->esi, esi_buf,
9523 sizeof(esi_buf)));
9524
9525 vty_out(vty, "\n");
9526 }
9527 if (attr->flag &
9528 ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES)) {
9529 vty_out(vty, "%*s", 20, " ");
9530 vty_out(vty, "%s\n",
9531 bgp_attr_get_ecommunity(attr)->str);
9532 }
9533 }
9534
9535 #ifdef ENABLE_BGP_VNC
9536 /* prints an additional line, indented, with VNC info, if
9537 * present */
9538 if ((safi == SAFI_MPLS_VPN) || (safi == SAFI_ENCAP))
9539 rfapi_vty_out_vncinfo(vty, p, path, safi);
9540 #endif
9541 }
9542 }
9543
9544 /* called from terminal list command */
9545 void route_vty_out_tmp(struct vty *vty, struct bgp_dest *dest,
9546 const struct prefix *p, struct attr *attr, safi_t safi,
9547 bool use_json, json_object *json_ar, bool wide)
9548 {
9549 json_object *json_status = NULL;
9550 json_object *json_net = NULL;
9551 int len;
9552 char buff[BUFSIZ];
9553
9554 /* Route status display. */
9555 if (use_json) {
9556 json_status = json_object_new_object();
9557 json_net = json_object_new_object();
9558 } else {
9559 vty_out(vty, " *");
9560 vty_out(vty, ">");
9561 vty_out(vty, " ");
9562 }
9563
9564 /* print prefix and mask */
9565 if (use_json) {
9566 if (safi == SAFI_EVPN)
9567 bgp_evpn_route2json((struct prefix_evpn *)p, json_net);
9568 else if (p->family == AF_INET || p->family == AF_INET6) {
9569 json_object_string_add(
9570 json_net, "addrPrefix",
9571 inet_ntop(p->family, &p->u.prefix, buff,
9572 BUFSIZ));
9573 json_object_int_add(json_net, "prefixLen",
9574 p->prefixlen);
9575 json_object_string_addf(json_net, "network", "%pFX", p);
9576 }
9577 } else
9578 route_vty_out_route(dest, p, vty, NULL, wide);
9579
9580 /* Print attribute */
9581 if (attr) {
9582 if (use_json) {
9583 if (p->family == AF_INET &&
9584 (safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP ||
9585 !BGP_ATTR_MP_NEXTHOP_LEN_IP6(attr))) {
9586 if (safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP)
9587 json_object_string_addf(
9588 json_net, "nextHop", "%pI4",
9589 &attr->mp_nexthop_global_in);
9590 else
9591 json_object_string_addf(
9592 json_net, "nextHop", "%pI4",
9593 &attr->nexthop);
9594 } else if (p->family == AF_INET6 ||
9595 BGP_ATTR_MP_NEXTHOP_LEN_IP6(attr)) {
9596 json_object_string_addf(
9597 json_net, "nextHopGlobal", "%pI6",
9598 &attr->mp_nexthop_global);
9599 } else if (p->family == AF_EVPN &&
9600 !BGP_ATTR_NEXTHOP_AFI_IP6(attr)) {
9601 json_object_string_addf(
9602 json_net, "nextHop", "%pI4",
9603 &attr->mp_nexthop_global_in);
9604 }
9605
9606 if (attr->flag
9607 & ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC))
9608 json_object_int_add(json_net, "metric",
9609 attr->med);
9610
9611 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF))
9612 json_object_int_add(json_net, "locPrf",
9613 attr->local_pref);
9614
9615 json_object_int_add(json_net, "weight", attr->weight);
9616
9617 /* Print aspath */
9618 if (attr->aspath)
9619 json_object_string_add(json_net, "path",
9620 attr->aspath->str);
9621
9622 /* Print origin */
9623 #if CONFDATE > 20231208
9624 CPP_NOTICE("Drop `bgpOriginCodes` from JSON outputs")
9625 #endif
9626 json_object_string_add(json_net, "bgpOriginCode",
9627 bgp_origin_str[attr->origin]);
9628 json_object_string_add(
9629 json_net, "origin",
9630 bgp_origin_long_str[attr->origin]);
9631 } else {
9632 if (p->family == AF_INET &&
9633 (safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP ||
9634 safi == SAFI_EVPN ||
9635 !BGP_ATTR_MP_NEXTHOP_LEN_IP6(attr))) {
9636 if (safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP
9637 || safi == SAFI_EVPN)
9638 vty_out(vty, "%-16pI4",
9639 &attr->mp_nexthop_global_in);
9640 else if (wide)
9641 vty_out(vty, "%-41pI4", &attr->nexthop);
9642 else
9643 vty_out(vty, "%-16pI4", &attr->nexthop);
9644 } else if (p->family == AF_INET6 ||
9645 BGP_ATTR_MP_NEXTHOP_LEN_IP6(attr)) {
9646 len = vty_out(vty, "%pI6",
9647 &attr->mp_nexthop_global);
9648 len = wide ? (41 - len) : (16 - len);
9649 if (len < 1)
9650 vty_out(vty, "\n%*s", 36, " ");
9651 else
9652 vty_out(vty, "%*s", len, " ");
9653 }
9654 if (attr->flag
9655 & ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC))
9656 if (wide)
9657 vty_out(vty, "%7u", attr->med);
9658 else
9659 vty_out(vty, "%10u", attr->med);
9660 else if (wide)
9661 vty_out(vty, " ");
9662 else
9663 vty_out(vty, " ");
9664
9665 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF))
9666 vty_out(vty, "%7u", attr->local_pref);
9667 else
9668 vty_out(vty, " ");
9669
9670 vty_out(vty, "%7u ", attr->weight);
9671
9672 /* Print aspath */
9673 if (attr->aspath)
9674 aspath_print_vty(vty, attr->aspath);
9675
9676 /* Print origin */
9677 vty_out(vty, "%s", bgp_origin_str[attr->origin]);
9678 }
9679 }
9680 if (use_json) {
9681 struct bgp_path_info *bpi = bgp_dest_get_bgp_path_info(dest);
9682
9683 #if CONFDATE > 20231208
9684 CPP_NOTICE("Drop `bgpStatusCodes` from JSON outputs")
9685 #endif
9686 json_object_boolean_true_add(json_status, "*");
9687 json_object_boolean_true_add(json_status, ">");
9688 json_object_boolean_true_add(json_net, "valid");
9689 json_object_boolean_true_add(json_net, "best");
9690
9691 if (bpi && CHECK_FLAG(bpi->flags, BGP_PATH_MULTIPATH)) {
9692 json_object_boolean_true_add(json_status, "=");
9693 json_object_boolean_true_add(json_net, "multipath");
9694 }
9695 json_object_object_add(json_net, "appliedStatusSymbols",
9696 json_status);
9697 json_object_object_addf(json_ar, json_net, "%pFX", p);
9698 } else
9699 vty_out(vty, "\n");
9700 }
9701
9702 void route_vty_out_tag(struct vty *vty, const struct prefix *p,
9703 struct bgp_path_info *path, int display, safi_t safi,
9704 json_object *json)
9705 {
9706 json_object *json_out = NULL;
9707 struct attr *attr;
9708 mpls_label_t label = MPLS_INVALID_LABEL;
9709
9710 if (!path->extra)
9711 return;
9712
9713 if (json)
9714 json_out = json_object_new_object();
9715
9716 /* short status lead text */
9717 route_vty_short_status_out(vty, path, p, json_out);
9718
9719 /* print prefix and mask */
9720 if (json == NULL) {
9721 if (!display)
9722 route_vty_out_route(path->net, p, vty, NULL, false);
9723 else
9724 vty_out(vty, "%*s", 17, " ");
9725 }
9726
9727 /* Print attribute */
9728 attr = path->attr;
9729 if (((p->family == AF_INET) &&
9730 ((safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP))) ||
9731 (safi == SAFI_EVPN && !BGP_ATTR_NEXTHOP_AFI_IP6(attr)) ||
9732 (!BGP_ATTR_MP_NEXTHOP_LEN_IP6(attr))) {
9733 if (safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP
9734 || safi == SAFI_EVPN) {
9735 if (json)
9736 json_object_string_addf(
9737 json_out, "mpNexthopGlobalIn", "%pI4",
9738 &attr->mp_nexthop_global_in);
9739 else
9740 vty_out(vty, "%-16pI4",
9741 &attr->mp_nexthop_global_in);
9742 } else {
9743 if (json)
9744 json_object_string_addf(json_out, "nexthop",
9745 "%pI4", &attr->nexthop);
9746 else
9747 vty_out(vty, "%-16pI4", &attr->nexthop);
9748 }
9749 } else if (((p->family == AF_INET6) &&
9750 ((safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP))) ||
9751 (safi == SAFI_EVPN && BGP_ATTR_MP_NEXTHOP_LEN_IP6(attr)) ||
9752 (BGP_ATTR_MP_NEXTHOP_LEN_IP6(attr))) {
9753 char buf_a[512];
9754
9755 if (attr->mp_nexthop_len == BGP_ATTR_NHLEN_IPV6_GLOBAL) {
9756 if (json)
9757 json_object_string_addf(
9758 json_out, "mpNexthopGlobalIn", "%pI6",
9759 &attr->mp_nexthop_global);
9760 else
9761 vty_out(vty, "%s",
9762 inet_ntop(AF_INET6,
9763 &attr->mp_nexthop_global,
9764 buf_a, sizeof(buf_a)));
9765 } else if (attr->mp_nexthop_len
9766 == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL) {
9767 snprintfrr(buf_a, sizeof(buf_a), "%pI6(%pI6)",
9768 &attr->mp_nexthop_global,
9769 &attr->mp_nexthop_local);
9770 if (json)
9771 json_object_string_add(json_out,
9772 "mpNexthopGlobalLocal",
9773 buf_a);
9774 else
9775 vty_out(vty, "%s", buf_a);
9776 }
9777 }
9778
9779 label = decode_label(&path->extra->label[0]);
9780
9781 if (bgp_is_valid_label(&label)) {
9782 if (json) {
9783 json_object_int_add(json_out, "notag", label);
9784 json_object_array_add(json, json_out);
9785 } else {
9786 vty_out(vty, "notag/%d", label);
9787 vty_out(vty, "\n");
9788 }
9789 } else if (!json)
9790 vty_out(vty, "\n");
9791 }
9792
9793 void route_vty_out_overlay(struct vty *vty, const struct prefix *p,
9794 struct bgp_path_info *path, int display,
9795 json_object *json_paths)
9796 {
9797 struct attr *attr;
9798 json_object *json_path = NULL;
9799 json_object *json_nexthop = NULL;
9800 json_object *json_overlay = NULL;
9801
9802 if (!path->extra)
9803 return;
9804
9805 if (json_paths) {
9806 json_path = json_object_new_object();
9807 json_overlay = json_object_new_object();
9808 json_nexthop = json_object_new_object();
9809 }
9810
9811 /* short status lead text */
9812 route_vty_short_status_out(vty, path, p, json_path);
9813
9814 /* print prefix and mask */
9815 if (!display)
9816 route_vty_out_route(path->net, p, vty, json_path, false);
9817 else
9818 vty_out(vty, "%*s", 17, " ");
9819
9820 /* Print attribute */
9821 attr = path->attr;
9822 int af = NEXTHOP_FAMILY(attr->mp_nexthop_len);
9823
9824 switch (af) {
9825 case AF_INET:
9826 if (!json_path) {
9827 vty_out(vty, "%-16pI4", &attr->mp_nexthop_global_in);
9828 } else {
9829 json_object_string_addf(json_nexthop, "ip", "%pI4",
9830 &attr->mp_nexthop_global_in);
9831
9832 json_object_string_add(json_nexthop, "afi", "ipv4");
9833
9834 json_object_object_add(json_path, "nexthop",
9835 json_nexthop);
9836 }
9837 break;
9838 case AF_INET6:
9839 if (!json_path) {
9840 vty_out(vty, "%pI6(%pI6)", &attr->mp_nexthop_global,
9841 &attr->mp_nexthop_local);
9842 } else {
9843 json_object_string_addf(json_nexthop, "ipv6Global",
9844 "%pI6",
9845 &attr->mp_nexthop_global);
9846
9847 json_object_string_addf(json_nexthop, "ipv6LinkLocal",
9848 "%pI6",
9849 &attr->mp_nexthop_local);
9850
9851 json_object_string_add(json_nexthop, "afi", "ipv6");
9852
9853 json_object_object_add(json_path, "nexthop",
9854 json_nexthop);
9855 }
9856 break;
9857 default:
9858 if (!json_path) {
9859 vty_out(vty, "?");
9860 } else {
9861 json_object_string_add(json_nexthop, "error",
9862 "Unsupported address-family");
9863 }
9864 }
9865
9866 const struct bgp_route_evpn *eo = bgp_attr_get_evpn_overlay(attr);
9867
9868 if (!json_path)
9869 vty_out(vty, "/%pIA", &eo->gw_ip);
9870 else
9871 json_object_string_addf(json_overlay, "gw", "%pIA", &eo->gw_ip);
9872
9873 if (bgp_attr_get_ecommunity(attr)) {
9874 char *mac = NULL;
9875 struct ecommunity_val *routermac = ecommunity_lookup(
9876 bgp_attr_get_ecommunity(attr), ECOMMUNITY_ENCODE_EVPN,
9877 ECOMMUNITY_EVPN_SUBTYPE_ROUTERMAC);
9878
9879 if (routermac)
9880 mac = ecom_mac2str((char *)routermac->val);
9881 if (mac) {
9882 if (!json_path) {
9883 vty_out(vty, "/%s", mac);
9884 } else {
9885 json_object_string_add(json_overlay, "rmac",
9886 mac);
9887 }
9888 XFREE(MTYPE_TMP, mac);
9889 }
9890 }
9891
9892 if (!json_path) {
9893 vty_out(vty, "\n");
9894 } else {
9895 json_object_object_add(json_path, "overlay", json_overlay);
9896
9897 json_object_array_add(json_paths, json_path);
9898 }
9899 }
9900
9901 /* dampening route */
9902 static void damp_route_vty_out(struct vty *vty, const struct prefix *p,
9903 struct bgp_path_info *path, int display,
9904 afi_t afi, safi_t safi, bool use_json,
9905 json_object *json_paths)
9906 {
9907 struct attr *attr = path->attr;
9908 int len;
9909 char timebuf[BGP_UPTIME_LEN];
9910 json_object *json_path = NULL;
9911
9912 if (use_json)
9913 json_path = json_object_new_object();
9914
9915 /* short status lead text */
9916 route_vty_short_status_out(vty, path, p, json_path);
9917
9918 /* print prefix and mask */
9919 if (!use_json) {
9920 if (!display)
9921 route_vty_out_route(path->net, p, vty, NULL, false);
9922 else
9923 vty_out(vty, "%*s", 17, " ");
9924
9925 len = vty_out(vty, "%s", path->peer->host);
9926 len = 17 - len;
9927
9928 if (len < 1)
9929 vty_out(vty, "\n%*s", 34, " ");
9930 else
9931 vty_out(vty, "%*s", len, " ");
9932
9933 vty_out(vty, "%s ",
9934 bgp_damp_reuse_time_vty(vty, path, timebuf,
9935 BGP_UPTIME_LEN, afi, safi,
9936 use_json, NULL));
9937
9938 if (attr->aspath)
9939 aspath_print_vty(vty, attr->aspath);
9940
9941 vty_out(vty, "%s", bgp_origin_str[attr->origin]);
9942
9943 vty_out(vty, "\n");
9944 } else {
9945 bgp_damp_reuse_time_vty(vty, path, timebuf, BGP_UPTIME_LEN, afi,
9946 safi, use_json, json_path);
9947
9948 if (attr->aspath)
9949 json_object_string_add(json_path, "asPath",
9950 attr->aspath->str);
9951
9952 json_object_string_add(json_path, "origin",
9953 bgp_origin_str[attr->origin]);
9954 json_object_string_add(json_path, "peerHost", path->peer->host);
9955
9956 json_object_array_add(json_paths, json_path);
9957 }
9958 }
9959
9960 /* flap route */
9961 static void flap_route_vty_out(struct vty *vty, const struct prefix *p,
9962 struct bgp_path_info *path, int display,
9963 afi_t afi, safi_t safi, bool use_json,
9964 json_object *json_paths)
9965 {
9966 struct attr *attr = path->attr;
9967 struct bgp_damp_info *bdi;
9968 char timebuf[BGP_UPTIME_LEN];
9969 int len;
9970 json_object *json_path = NULL;
9971
9972 if (!path->extra)
9973 return;
9974
9975 if (use_json)
9976 json_path = json_object_new_object();
9977
9978 bdi = path->extra->damp_info;
9979
9980 /* short status lead text */
9981 route_vty_short_status_out(vty, path, p, json_path);
9982
9983 if (!use_json) {
9984 if (!display)
9985 route_vty_out_route(path->net, p, vty, NULL, false);
9986 else
9987 vty_out(vty, "%*s", 17, " ");
9988
9989 len = vty_out(vty, "%s", path->peer->host);
9990 len = 16 - len;
9991 if (len < 1)
9992 vty_out(vty, "\n%*s", 33, " ");
9993 else
9994 vty_out(vty, "%*s", len, " ");
9995
9996 len = vty_out(vty, "%d", bdi->flap);
9997 len = 5 - len;
9998 if (len < 1)
9999 vty_out(vty, " ");
10000 else
10001 vty_out(vty, "%*s", len, " ");
10002
10003 vty_out(vty, "%s ", peer_uptime(bdi->start_time, timebuf,
10004 BGP_UPTIME_LEN, 0, NULL));
10005
10006 if (CHECK_FLAG(path->flags, BGP_PATH_DAMPED)
10007 && !CHECK_FLAG(path->flags, BGP_PATH_HISTORY))
10008 vty_out(vty, "%s ",
10009 bgp_damp_reuse_time_vty(vty, path, timebuf,
10010 BGP_UPTIME_LEN, afi,
10011 safi, use_json, NULL));
10012 else
10013 vty_out(vty, "%*s ", 8, " ");
10014
10015 if (attr->aspath)
10016 aspath_print_vty(vty, attr->aspath);
10017
10018 vty_out(vty, "%s", bgp_origin_str[attr->origin]);
10019
10020 vty_out(vty, "\n");
10021 } else {
10022 json_object_string_add(json_path, "peerHost", path->peer->host);
10023 json_object_int_add(json_path, "bdiFlap", bdi->flap);
10024
10025 peer_uptime(bdi->start_time, timebuf, BGP_UPTIME_LEN, use_json,
10026 json_path);
10027
10028 if (CHECK_FLAG(path->flags, BGP_PATH_DAMPED)
10029 && !CHECK_FLAG(path->flags, BGP_PATH_HISTORY))
10030 bgp_damp_reuse_time_vty(vty, path, timebuf,
10031 BGP_UPTIME_LEN, afi, safi,
10032 use_json, json_path);
10033
10034 if (attr->aspath)
10035 json_object_string_add(json_path, "asPath",
10036 attr->aspath->str);
10037
10038 json_object_string_add(json_path, "origin",
10039 bgp_origin_str[attr->origin]);
10040
10041 json_object_array_add(json_paths, json_path);
10042 }
10043 }
10044
10045 static void route_vty_out_advertised_to(struct vty *vty, struct peer *peer,
10046 int *first, const char *header,
10047 json_object *json_adv_to)
10048 {
10049 json_object *json_peer = NULL;
10050
10051 if (json_adv_to) {
10052 /* 'advertised-to' is a dictionary of peers we have advertised
10053 * this
10054 * prefix too. The key is the peer's IP or swpX, the value is
10055 * the
10056 * hostname if we know it and "" if not.
10057 */
10058 json_peer = json_object_new_object();
10059
10060 if (peer->hostname)
10061 json_object_string_add(json_peer, "hostname",
10062 peer->hostname);
10063
10064 if (peer->conf_if)
10065 json_object_object_add(json_adv_to, peer->conf_if,
10066 json_peer);
10067 else
10068 json_object_object_addf(json_adv_to, json_peer, "%pSU",
10069 &peer->su);
10070 } else {
10071 if (*first) {
10072 vty_out(vty, "%s", header);
10073 *first = 0;
10074 }
10075
10076 if (peer->hostname
10077 && CHECK_FLAG(peer->bgp->flags, BGP_FLAG_SHOW_HOSTNAME)) {
10078 if (peer->conf_if)
10079 vty_out(vty, " %s(%s)", peer->hostname,
10080 peer->conf_if);
10081 else
10082 vty_out(vty, " %s(%pSU)", peer->hostname,
10083 &peer->su);
10084 } else {
10085 if (peer->conf_if)
10086 vty_out(vty, " %s", peer->conf_if);
10087 else
10088 vty_out(vty, " %pSU", &peer->su);
10089 }
10090 }
10091 }
10092
10093 static void route_vty_out_tx_ids(struct vty *vty,
10094 struct bgp_addpath_info_data *d)
10095 {
10096 int i;
10097
10098 for (i = 0; i < BGP_ADDPATH_MAX; i++) {
10099 vty_out(vty, "TX-%s %u%s", bgp_addpath_names(i)->human_name,
10100 d->addpath_tx_id[i],
10101 i < BGP_ADDPATH_MAX - 1 ? " " : "\n");
10102 }
10103 }
10104
10105 static void route_vty_out_detail_es_info(struct vty *vty,
10106 struct bgp_path_info *pi,
10107 struct attr *attr,
10108 json_object *json_path)
10109 {
10110 char esi_buf[ESI_STR_LEN];
10111 bool es_local = !!CHECK_FLAG(attr->es_flags, ATTR_ES_IS_LOCAL);
10112 bool peer_router = !!CHECK_FLAG(attr->es_flags,
10113 ATTR_ES_PEER_ROUTER);
10114 bool peer_active = !!CHECK_FLAG(attr->es_flags,
10115 ATTR_ES_PEER_ACTIVE);
10116 bool peer_proxy = !!CHECK_FLAG(attr->es_flags,
10117 ATTR_ES_PEER_PROXY);
10118 esi_to_str(&attr->esi, esi_buf, sizeof(esi_buf));
10119 if (json_path) {
10120 json_object *json_es_info = NULL;
10121
10122 json_object_string_add(
10123 json_path, "esi",
10124 esi_buf);
10125 if (es_local || bgp_evpn_attr_is_sync(attr)) {
10126 json_es_info = json_object_new_object();
10127 if (es_local)
10128 json_object_boolean_true_add(
10129 json_es_info, "localEs");
10130 if (peer_active)
10131 json_object_boolean_true_add(
10132 json_es_info, "peerActive");
10133 if (peer_proxy)
10134 json_object_boolean_true_add(
10135 json_es_info, "peerProxy");
10136 if (peer_router)
10137 json_object_boolean_true_add(
10138 json_es_info, "peerRouter");
10139 if (attr->mm_sync_seqnum)
10140 json_object_int_add(
10141 json_es_info, "peerSeq",
10142 attr->mm_sync_seqnum);
10143 json_object_object_add(
10144 json_path, "es_info",
10145 json_es_info);
10146 }
10147 } else {
10148 if (bgp_evpn_attr_is_sync(attr))
10149 vty_out(vty,
10150 " ESI %s %s peer-info: (%s%s%sMM: %d)\n",
10151 esi_buf,
10152 es_local ? "local-es":"",
10153 peer_proxy ? "proxy " : "",
10154 peer_active ? "active ":"",
10155 peer_router ? "router ":"",
10156 attr->mm_sync_seqnum);
10157 else
10158 vty_out(vty, " ESI %s %s\n",
10159 esi_buf,
10160 es_local ? "local-es":"");
10161 }
10162 }
10163
10164 void route_vty_out_detail(struct vty *vty, struct bgp *bgp, struct bgp_dest *bn,
10165 const struct prefix *p, struct bgp_path_info *path,
10166 afi_t afi, safi_t safi,
10167 enum rpki_states rpki_curr_state,
10168 json_object *json_paths)
10169 {
10170 char buf[INET6_ADDRSTRLEN];
10171 char tag_buf[30];
10172 struct attr *attr = path->attr;
10173 time_t tbuf;
10174 json_object *json_bestpath = NULL;
10175 json_object *json_cluster_list = NULL;
10176 json_object *json_cluster_list_list = NULL;
10177 json_object *json_ext_community = NULL;
10178 json_object *json_last_update = NULL;
10179 json_object *json_pmsi = NULL;
10180 json_object *json_nexthop_global = NULL;
10181 json_object *json_nexthop_ll = NULL;
10182 json_object *json_nexthops = NULL;
10183 json_object *json_path = NULL;
10184 json_object *json_peer = NULL;
10185 json_object *json_string = NULL;
10186 json_object *json_adv_to = NULL;
10187 int first = 0;
10188 struct listnode *node, *nnode;
10189 struct peer *peer;
10190 bool addpath_capable;
10191 int has_adj;
10192 unsigned int first_as;
10193 bool nexthop_self =
10194 CHECK_FLAG(path->flags, BGP_PATH_ANNC_NH_SELF) ? true : false;
10195 int i;
10196 char *nexthop_hostname =
10197 bgp_nexthop_hostname(path->peer, path->nexthop);
10198 uint32_t ttl = 0;
10199 uint32_t bos = 0;
10200 uint32_t exp = 0;
10201 mpls_label_t label = MPLS_INVALID_LABEL;
10202 tag_buf[0] = '\0';
10203 struct bgp_path_info *bpi_ultimate =
10204 bgp_get_imported_bpi_ultimate(path);
10205
10206 if (json_paths) {
10207 json_path = json_object_new_object();
10208 json_peer = json_object_new_object();
10209 json_nexthop_global = json_object_new_object();
10210 }
10211
10212 if (safi == SAFI_EVPN) {
10213 if (!json_paths)
10214 vty_out(vty, " Route %pFX", p);
10215 }
10216
10217 if (path->extra) {
10218 if (path->extra && path->extra->num_labels) {
10219 bgp_evpn_label2str(path->extra->label,
10220 path->extra->num_labels, tag_buf,
10221 sizeof(tag_buf));
10222 }
10223 if (safi == SAFI_EVPN) {
10224 if (!json_paths) {
10225 if (tag_buf[0] != '\0')
10226 vty_out(vty, " VNI %s", tag_buf);
10227 } else {
10228 if (tag_buf[0])
10229 json_object_string_add(json_path, "vni",
10230 tag_buf);
10231 }
10232 }
10233 }
10234
10235 if (safi == SAFI_EVPN
10236 && attr->evpn_overlay.type == OVERLAY_INDEX_GATEWAY_IP) {
10237 char gwip_buf[INET6_ADDRSTRLEN];
10238
10239 ipaddr2str(&attr->evpn_overlay.gw_ip, gwip_buf,
10240 sizeof(gwip_buf));
10241
10242 if (json_paths)
10243 json_object_string_add(json_path, "gatewayIP",
10244 gwip_buf);
10245 else
10246 vty_out(vty, " Gateway IP %s", gwip_buf);
10247 }
10248
10249 if (safi == SAFI_EVPN && !json_path)
10250 vty_out(vty, "\n");
10251
10252
10253 if (path->extra && path->extra->parent && !json_paths) {
10254 struct bgp_path_info *parent_ri;
10255 struct bgp_dest *dest, *pdest;
10256
10257 parent_ri = (struct bgp_path_info *)path->extra->parent;
10258 dest = parent_ri->net;
10259 if (dest && dest->pdest) {
10260 pdest = dest->pdest;
10261 if (is_pi_family_evpn(parent_ri)) {
10262 vty_out(vty,
10263 " Imported from %pRD:%pFX, VNI %s",
10264 (struct prefix_rd *)bgp_dest_get_prefix(
10265 pdest),
10266 (struct prefix_evpn *)
10267 bgp_dest_get_prefix(dest),
10268 tag_buf);
10269 if (CHECK_FLAG(attr->es_flags, ATTR_ES_L3_NHG))
10270 vty_out(vty, ", L3NHG %s",
10271 CHECK_FLAG(
10272 attr->es_flags,
10273 ATTR_ES_L3_NHG_ACTIVE)
10274 ? "active"
10275 : "inactive");
10276 vty_out(vty, "\n");
10277
10278 } else
10279 vty_out(vty, " Imported from %pRD:%pFX\n",
10280 (struct prefix_rd *)bgp_dest_get_prefix(
10281 pdest),
10282 (struct prefix_evpn *)
10283 bgp_dest_get_prefix(dest));
10284 }
10285 }
10286
10287 /* Line1 display AS-path, Aggregator */
10288 if (attr->aspath) {
10289 if (json_paths) {
10290 if (!attr->aspath->json)
10291 aspath_str_update(attr->aspath, true);
10292 json_object_lock(attr->aspath->json);
10293 json_object_object_add(json_path, "aspath",
10294 attr->aspath->json);
10295 } else {
10296 if (attr->aspath->segments)
10297 vty_out(vty, " %s", attr->aspath->str);
10298 else
10299 vty_out(vty, " Local");
10300 }
10301 }
10302
10303 if (CHECK_FLAG(path->flags, BGP_PATH_REMOVED)) {
10304 if (json_paths)
10305 json_object_boolean_true_add(json_path, "removed");
10306 else
10307 vty_out(vty, ", (removed)");
10308 }
10309
10310 if (CHECK_FLAG(path->flags, BGP_PATH_STALE)) {
10311 if (json_paths)
10312 json_object_boolean_true_add(json_path, "stale");
10313 else
10314 vty_out(vty, ", (stale)");
10315 }
10316
10317 if (CHECK_FLAG(attr->flag, ATTR_FLAG_BIT(BGP_ATTR_AGGREGATOR))) {
10318 if (json_paths) {
10319 json_object_int_add(json_path, "aggregatorAs",
10320 attr->aggregator_as);
10321 json_object_string_addf(json_path, "aggregatorId",
10322 "%pI4", &attr->aggregator_addr);
10323 } else {
10324 vty_out(vty, ", (aggregated by %u %pI4)",
10325 attr->aggregator_as, &attr->aggregator_addr);
10326 }
10327 }
10328
10329 if (CHECK_FLAG(path->peer->af_flags[afi][safi],
10330 PEER_FLAG_REFLECTOR_CLIENT)) {
10331 if (json_paths)
10332 json_object_boolean_true_add(json_path,
10333 "rxedFromRrClient");
10334 else
10335 vty_out(vty, ", (Received from a RR-client)");
10336 }
10337
10338 if (CHECK_FLAG(path->peer->af_flags[afi][safi],
10339 PEER_FLAG_RSERVER_CLIENT)) {
10340 if (json_paths)
10341 json_object_boolean_true_add(json_path,
10342 "rxedFromRsClient");
10343 else
10344 vty_out(vty, ", (Received from a RS-client)");
10345 }
10346
10347 if (CHECK_FLAG(path->flags, BGP_PATH_HISTORY)) {
10348 if (json_paths)
10349 json_object_boolean_true_add(json_path,
10350 "dampeningHistoryEntry");
10351 else
10352 vty_out(vty, ", (history entry)");
10353 } else if (CHECK_FLAG(path->flags, BGP_PATH_DAMPED)) {
10354 if (json_paths)
10355 json_object_boolean_true_add(json_path,
10356 "dampeningSuppressed");
10357 else
10358 vty_out(vty, ", (suppressed due to dampening)");
10359 }
10360
10361 if (!json_paths)
10362 vty_out(vty, "\n");
10363
10364 /* Line2 display Next-hop, Neighbor, Router-id */
10365 /* Display the nexthop */
10366
10367 if ((p->family == AF_INET || p->family == AF_ETHERNET ||
10368 p->family == AF_EVPN) &&
10369 (safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP || safi == SAFI_EVPN ||
10370 !BGP_ATTR_MP_NEXTHOP_LEN_IP6(attr))) {
10371 if (safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP
10372 || safi == SAFI_EVPN) {
10373 if (json_paths) {
10374 json_object_string_addf(
10375 json_nexthop_global, "ip", "%pI4",
10376 &attr->mp_nexthop_global_in);
10377
10378 if (path->peer->hostname)
10379 json_object_string_add(
10380 json_nexthop_global, "hostname",
10381 path->peer->hostname);
10382 } else {
10383 if (nexthop_hostname)
10384 vty_out(vty, " %pI4(%s)",
10385 &attr->mp_nexthop_global_in,
10386 nexthop_hostname);
10387 else
10388 vty_out(vty, " %pI4",
10389 &attr->mp_nexthop_global_in);
10390 }
10391 } else {
10392 if (json_paths) {
10393 json_object_string_addf(json_nexthop_global,
10394 "ip", "%pI4",
10395 &attr->nexthop);
10396
10397 if (path->peer->hostname)
10398 json_object_string_add(
10399 json_nexthop_global, "hostname",
10400 path->peer->hostname);
10401 } else {
10402 if (nexthop_hostname)
10403 vty_out(vty, " %pI4(%s)",
10404 &attr->nexthop,
10405 nexthop_hostname);
10406 else
10407 vty_out(vty, " %pI4",
10408 &attr->nexthop);
10409 }
10410 }
10411
10412 if (json_paths)
10413 json_object_string_add(json_nexthop_global, "afi",
10414 "ipv4");
10415 } else {
10416 if (json_paths) {
10417 json_object_string_addf(json_nexthop_global, "ip",
10418 "%pI6",
10419 &attr->mp_nexthop_global);
10420
10421 if (path->peer->hostname)
10422 json_object_string_add(json_nexthop_global,
10423 "hostname",
10424 path->peer->hostname);
10425
10426 json_object_string_add(json_nexthop_global, "afi",
10427 "ipv6");
10428 json_object_string_add(json_nexthop_global, "scope",
10429 "global");
10430 } else {
10431 if (nexthop_hostname)
10432 vty_out(vty, " %pI6(%s)",
10433 &attr->mp_nexthop_global,
10434 nexthop_hostname);
10435 else
10436 vty_out(vty, " %pI6",
10437 &attr->mp_nexthop_global);
10438 }
10439 }
10440
10441 /* Display the IGP cost or 'inaccessible' */
10442 if (!CHECK_FLAG(bpi_ultimate->flags, BGP_PATH_VALID)) {
10443 bool import = CHECK_FLAG(bgp->flags, BGP_FLAG_IMPORT_CHECK);
10444
10445 if (json_paths) {
10446 json_object_boolean_false_add(json_nexthop_global,
10447 "accessible");
10448 json_object_boolean_add(json_nexthop_global,
10449 "importCheckEnabled", import);
10450 } else {
10451 vty_out(vty, " (inaccessible%s)",
10452 import ? ", import-check enabled" : "");
10453 }
10454 } else {
10455 if (bpi_ultimate->extra && bpi_ultimate->extra->igpmetric) {
10456 if (json_paths)
10457 json_object_int_add(
10458 json_nexthop_global, "metric",
10459 bpi_ultimate->extra->igpmetric);
10460 else
10461 vty_out(vty, " (metric %u)",
10462 bpi_ultimate->extra->igpmetric);
10463 }
10464
10465 /* IGP cost is 0, display this only for json */
10466 else {
10467 if (json_paths)
10468 json_object_int_add(json_nexthop_global,
10469 "metric", 0);
10470 }
10471
10472 if (json_paths)
10473 json_object_boolean_true_add(json_nexthop_global,
10474 "accessible");
10475 }
10476
10477 /* Display peer "from" output */
10478 /* This path was originated locally */
10479 if (path->peer == bgp->peer_self) {
10480
10481 if (safi == SAFI_EVPN || (p->family == AF_INET &&
10482 !BGP_ATTR_MP_NEXTHOP_LEN_IP6(attr))) {
10483 if (json_paths)
10484 json_object_string_add(json_peer, "peerId",
10485 "0.0.0.0");
10486 else
10487 vty_out(vty, " from 0.0.0.0 ");
10488 } else {
10489 if (json_paths)
10490 json_object_string_add(json_peer, "peerId",
10491 "::");
10492 else
10493 vty_out(vty, " from :: ");
10494 }
10495
10496 if (json_paths)
10497 json_object_string_addf(json_peer, "routerId", "%pI4",
10498 &bgp->router_id);
10499 else
10500 vty_out(vty, "(%pI4)", &bgp->router_id);
10501 }
10502
10503 /* We RXed this path from one of our peers */
10504 else {
10505
10506 if (json_paths) {
10507 json_object_string_addf(json_peer, "peerId", "%pSU",
10508 &path->peer->su);
10509 json_object_string_addf(json_peer, "routerId", "%pI4",
10510 &path->peer->remote_id);
10511
10512 if (path->peer->hostname)
10513 json_object_string_add(json_peer, "hostname",
10514 path->peer->hostname);
10515
10516 if (path->peer->domainname)
10517 json_object_string_add(json_peer, "domainname",
10518 path->peer->domainname);
10519
10520 if (path->peer->conf_if)
10521 json_object_string_add(json_peer, "interface",
10522 path->peer->conf_if);
10523 } else {
10524 if (path->peer->conf_if) {
10525 if (path->peer->hostname
10526 && CHECK_FLAG(path->peer->bgp->flags,
10527 BGP_FLAG_SHOW_HOSTNAME))
10528 vty_out(vty, " from %s(%s)",
10529 path->peer->hostname,
10530 path->peer->conf_if);
10531 else
10532 vty_out(vty, " from %s",
10533 path->peer->conf_if);
10534 } else {
10535 if (path->peer->hostname
10536 && CHECK_FLAG(path->peer->bgp->flags,
10537 BGP_FLAG_SHOW_HOSTNAME))
10538 vty_out(vty, " from %s(%s)",
10539 path->peer->hostname,
10540 path->peer->host);
10541 else
10542 vty_out(vty, " from %pSU",
10543 &path->peer->su);
10544 }
10545
10546 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID))
10547 vty_out(vty, " (%pI4)", &attr->originator_id);
10548 else
10549 vty_out(vty, " (%pI4)", &path->peer->remote_id);
10550 }
10551 }
10552
10553 /*
10554 * Note when vrfid of nexthop is different from that of prefix
10555 */
10556 if (path->extra && path->extra->bgp_orig) {
10557 vrf_id_t nexthop_vrfid = path->extra->bgp_orig->vrf_id;
10558
10559 if (json_paths) {
10560 const char *vn;
10561
10562 if (path->extra->bgp_orig->inst_type
10563 == BGP_INSTANCE_TYPE_DEFAULT)
10564 vn = VRF_DEFAULT_NAME;
10565 else
10566 vn = path->extra->bgp_orig->name;
10567
10568 json_object_string_add(json_path, "nhVrfName", vn);
10569
10570 if (nexthop_vrfid == VRF_UNKNOWN) {
10571 json_object_int_add(json_path, "nhVrfId", -1);
10572 } else {
10573 json_object_int_add(json_path, "nhVrfId",
10574 (int)nexthop_vrfid);
10575 }
10576 } else {
10577 if (nexthop_vrfid == VRF_UNKNOWN)
10578 vty_out(vty, " vrf ?");
10579 else {
10580 struct vrf *vrf;
10581
10582 vrf = vrf_lookup_by_id(nexthop_vrfid);
10583 vty_out(vty, " vrf %s(%u)",
10584 VRF_LOGNAME(vrf), nexthop_vrfid);
10585 }
10586 }
10587 }
10588
10589 if (nexthop_self) {
10590 if (json_paths) {
10591 json_object_boolean_true_add(json_path,
10592 "announceNexthopSelf");
10593 } else {
10594 vty_out(vty, " announce-nh-self");
10595 }
10596 }
10597
10598 if (!json_paths)
10599 vty_out(vty, "\n");
10600
10601 /* display the link-local nexthop */
10602 if (attr->mp_nexthop_len == BGP_ATTR_NHLEN_IPV6_GLOBAL_AND_LL) {
10603 if (json_paths) {
10604 json_nexthop_ll = json_object_new_object();
10605 json_object_string_addf(json_nexthop_ll, "ip", "%pI6",
10606 &attr->mp_nexthop_local);
10607
10608 if (path->peer->hostname)
10609 json_object_string_add(json_nexthop_ll,
10610 "hostname",
10611 path->peer->hostname);
10612
10613 json_object_string_add(json_nexthop_ll, "afi", "ipv6");
10614 json_object_string_add(json_nexthop_ll, "scope",
10615 "link-local");
10616
10617 json_object_boolean_true_add(json_nexthop_ll,
10618 "accessible");
10619
10620 if (!attr->mp_nexthop_prefer_global)
10621 json_object_boolean_true_add(json_nexthop_ll,
10622 "used");
10623 else
10624 json_object_boolean_true_add(
10625 json_nexthop_global, "used");
10626 } else {
10627 vty_out(vty, " (%s) %s\n",
10628 inet_ntop(AF_INET6, &attr->mp_nexthop_local,
10629 buf, INET6_ADDRSTRLEN),
10630 attr->mp_nexthop_prefer_global
10631 ? "(prefer-global)"
10632 : "(used)");
10633 }
10634 }
10635 /* If we do not have a link-local nexthop then we must flag the
10636 global as "used" */
10637 else {
10638 if (json_paths)
10639 json_object_boolean_true_add(json_nexthop_global,
10640 "used");
10641 }
10642
10643 if (safi == SAFI_EVPN &&
10644 bgp_evpn_is_esi_valid(&attr->esi)) {
10645 route_vty_out_detail_es_info(vty, path, attr, json_path);
10646 }
10647
10648 /* Line 3 display Origin, Med, Locpref, Weight, Tag, valid,
10649 * Int/Ext/Local, Atomic, best */
10650 if (json_paths)
10651 json_object_string_add(json_path, "origin",
10652 bgp_origin_long_str[attr->origin]);
10653 else
10654 vty_out(vty, " Origin %s",
10655 bgp_origin_long_str[attr->origin]);
10656
10657 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_MULTI_EXIT_DISC)) {
10658 if (json_paths)
10659 json_object_int_add(json_path, "metric", attr->med);
10660 else
10661 vty_out(vty, ", metric %u", attr->med);
10662 }
10663
10664 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_LOCAL_PREF)) {
10665 if (json_paths)
10666 json_object_int_add(json_path, "locPrf",
10667 attr->local_pref);
10668 else
10669 vty_out(vty, ", localpref %u", attr->local_pref);
10670 }
10671
10672 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_AIGP)) {
10673 if (json_paths)
10674 json_object_int_add(json_path, "aigpMetric",
10675 bgp_attr_get_aigp_metric(attr));
10676 else
10677 vty_out(vty, ", aigp-metric %" PRIu64,
10678 bgp_attr_get_aigp_metric(attr));
10679 }
10680
10681 if (attr->weight != 0) {
10682 if (json_paths)
10683 json_object_int_add(json_path, "weight", attr->weight);
10684 else
10685 vty_out(vty, ", weight %u", attr->weight);
10686 }
10687
10688 if (attr->tag != 0) {
10689 if (json_paths)
10690 json_object_int_add(json_path, "tag", attr->tag);
10691 else
10692 vty_out(vty, ", tag %" ROUTE_TAG_PRI, attr->tag);
10693 }
10694
10695 if (!CHECK_FLAG(path->flags, BGP_PATH_VALID)) {
10696 if (json_paths)
10697 json_object_boolean_false_add(json_path, "valid");
10698 else
10699 vty_out(vty, ", invalid");
10700 } else if (!CHECK_FLAG(path->flags, BGP_PATH_HISTORY)) {
10701 if (json_paths)
10702 json_object_boolean_true_add(json_path, "valid");
10703 else
10704 vty_out(vty, ", valid");
10705 }
10706
10707 if (json_paths)
10708 json_object_int_add(json_path, "version", bn->version);
10709
10710 if (path->peer != bgp->peer_self) {
10711 if (path->peer->as == path->peer->local_as) {
10712 if (CHECK_FLAG(bgp->config, BGP_CONFIG_CONFEDERATION)) {
10713 if (json_paths)
10714 json_object_string_add(
10715 json_peer, "type",
10716 "confed-internal");
10717 else
10718 vty_out(vty, ", confed-internal");
10719 } else {
10720 if (json_paths)
10721 json_object_string_add(
10722 json_peer, "type", "internal");
10723 else
10724 vty_out(vty, ", internal");
10725 }
10726 } else {
10727 if (bgp_confederation_peers_check(bgp,
10728 path->peer->as)) {
10729 if (json_paths)
10730 json_object_string_add(
10731 json_peer, "type",
10732 "confed-external");
10733 else
10734 vty_out(vty, ", confed-external");
10735 } else {
10736 if (json_paths)
10737 json_object_string_add(
10738 json_peer, "type", "external");
10739 else
10740 vty_out(vty, ", external");
10741 }
10742 }
10743 } else if (path->sub_type == BGP_ROUTE_AGGREGATE) {
10744 if (json_paths) {
10745 json_object_boolean_true_add(json_path, "aggregated");
10746 json_object_boolean_true_add(json_path, "local");
10747 } else {
10748 vty_out(vty, ", aggregated, local");
10749 }
10750 } else if (path->type != ZEBRA_ROUTE_BGP) {
10751 if (json_paths)
10752 json_object_boolean_true_add(json_path, "sourced");
10753 else
10754 vty_out(vty, ", sourced");
10755 } else {
10756 if (json_paths) {
10757 json_object_boolean_true_add(json_path, "sourced");
10758 json_object_boolean_true_add(json_path, "local");
10759 } else {
10760 vty_out(vty, ", sourced, local");
10761 }
10762 }
10763
10764 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE)) {
10765 if (json_paths)
10766 json_object_boolean_true_add(json_path,
10767 "atomicAggregate");
10768 else
10769 vty_out(vty, ", atomic-aggregate");
10770 }
10771
10772 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_OTC)) {
10773 if (json_paths)
10774 json_object_int_add(json_path, "otc", attr->otc);
10775 else
10776 vty_out(vty, ", otc %u", attr->otc);
10777 }
10778
10779 if (CHECK_FLAG(path->flags, BGP_PATH_MULTIPATH)
10780 || (CHECK_FLAG(path->flags, BGP_PATH_SELECTED)
10781 && bgp_path_info_mpath_count(path))) {
10782 if (json_paths)
10783 json_object_boolean_true_add(json_path, "multipath");
10784 else
10785 vty_out(vty, ", multipath");
10786 }
10787
10788 // Mark the bestpath(s)
10789 if (CHECK_FLAG(path->flags, BGP_PATH_DMED_SELECTED)) {
10790 first_as = aspath_get_first_as(attr->aspath);
10791
10792 if (json_paths) {
10793 if (!json_bestpath)
10794 json_bestpath = json_object_new_object();
10795 json_object_int_add(json_bestpath, "bestpathFromAs",
10796 first_as);
10797 } else {
10798 if (first_as)
10799 vty_out(vty, ", bestpath-from-AS %u", first_as);
10800 else
10801 vty_out(vty, ", bestpath-from-AS Local");
10802 }
10803 }
10804
10805 if (CHECK_FLAG(path->flags, BGP_PATH_SELECTED)) {
10806 if (json_paths) {
10807 if (!json_bestpath)
10808 json_bestpath = json_object_new_object();
10809 json_object_boolean_true_add(json_bestpath, "overall");
10810 json_object_string_add(
10811 json_bestpath, "selectionReason",
10812 bgp_path_selection_reason2str(bn->reason));
10813 } else {
10814 vty_out(vty, ", best");
10815 vty_out(vty, " (%s)",
10816 bgp_path_selection_reason2str(bn->reason));
10817 }
10818 }
10819
10820 if (rpki_curr_state != RPKI_NOT_BEING_USED) {
10821 if (json_paths)
10822 json_object_string_add(
10823 json_path, "rpkiValidationState",
10824 bgp_rpki_validation2str(rpki_curr_state));
10825 else
10826 vty_out(vty, ", rpki validation-state: %s",
10827 bgp_rpki_validation2str(rpki_curr_state));
10828 }
10829
10830 if (json_bestpath)
10831 json_object_object_add(json_path, "bestpath", json_bestpath);
10832
10833 if (!json_paths)
10834 vty_out(vty, "\n");
10835
10836 /* Line 4 display Community */
10837 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_COMMUNITIES)) {
10838 if (json_paths) {
10839 if (!bgp_attr_get_community(attr)->json)
10840 community_str(bgp_attr_get_community(attr),
10841 true, true);
10842 json_object_lock(bgp_attr_get_community(attr)->json);
10843 json_object_object_add(
10844 json_path, "community",
10845 bgp_attr_get_community(attr)->json);
10846 } else {
10847 vty_out(vty, " Community: %s\n",
10848 bgp_attr_get_community(attr)->str);
10849 }
10850 }
10851
10852 /* Line 5 display Extended-community */
10853 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_EXT_COMMUNITIES)) {
10854 if (json_paths) {
10855 json_ext_community = json_object_new_object();
10856 json_object_string_add(
10857 json_ext_community, "string",
10858 bgp_attr_get_ecommunity(attr)->str);
10859 json_object_object_add(json_path, "extendedCommunity",
10860 json_ext_community);
10861 } else {
10862 vty_out(vty, " Extended Community: %s\n",
10863 bgp_attr_get_ecommunity(attr)->str);
10864 }
10865 }
10866
10867 /* Line 6 display Large community */
10868 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_LARGE_COMMUNITIES)) {
10869 if (json_paths) {
10870 if (!bgp_attr_get_lcommunity(attr)->json)
10871 lcommunity_str(bgp_attr_get_lcommunity(attr),
10872 true, true);
10873 json_object_lock(bgp_attr_get_lcommunity(attr)->json);
10874 json_object_object_add(
10875 json_path, "largeCommunity",
10876 bgp_attr_get_lcommunity(attr)->json);
10877 } else {
10878 vty_out(vty, " Large Community: %s\n",
10879 bgp_attr_get_lcommunity(attr)->str);
10880 }
10881 }
10882
10883 /* Line 7 display Originator, Cluster-id */
10884 if ((attr->flag & ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID))
10885 || (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_CLUSTER_LIST))) {
10886 char buf[BUFSIZ] = {0};
10887
10888 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_ORIGINATOR_ID)) {
10889 if (json_paths)
10890 json_object_string_addf(json_path,
10891 "originatorId", "%pI4",
10892 &attr->originator_id);
10893 else
10894 vty_out(vty, " Originator: %pI4",
10895 &attr->originator_id);
10896 }
10897
10898 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_CLUSTER_LIST)) {
10899 struct cluster_list *cluster =
10900 bgp_attr_get_cluster(attr);
10901 int i;
10902
10903 if (json_paths) {
10904 json_cluster_list = json_object_new_object();
10905 json_cluster_list_list =
10906 json_object_new_array();
10907
10908 for (i = 0; i < cluster->length / 4; i++) {
10909 json_string = json_object_new_string(
10910 inet_ntop(AF_INET,
10911 &cluster->list[i],
10912 buf, sizeof(buf)));
10913 json_object_array_add(
10914 json_cluster_list_list,
10915 json_string);
10916 }
10917
10918 /*
10919 * struct cluster_list does not have
10920 * "str" variable like aspath and community
10921 * do. Add this someday if someone asks
10922 * for it.
10923 * json_object_string_add(json_cluster_list,
10924 * "string", cluster->str);
10925 */
10926 json_object_object_add(json_cluster_list,
10927 "list",
10928 json_cluster_list_list);
10929 json_object_object_add(json_path, "clusterList",
10930 json_cluster_list);
10931 } else {
10932 vty_out(vty, ", Cluster list: ");
10933
10934 for (i = 0; i < cluster->length / 4; i++) {
10935 vty_out(vty, "%pI4 ",
10936 &cluster->list[i]);
10937 }
10938 }
10939 }
10940
10941 if (!json_paths)
10942 vty_out(vty, "\n");
10943 }
10944
10945 if (path->extra && path->extra->damp_info)
10946 bgp_damp_info_vty(vty, path, afi, safi, json_path);
10947
10948 /* Remote Label */
10949 if (path->extra && bgp_is_valid_label(&path->extra->label[0])
10950 && (safi != SAFI_EVPN && !is_route_parent_evpn(path))) {
10951 mpls_lse_decode(path->extra->label[0], &label, &ttl, &exp,
10952 &bos);
10953
10954 if (json_paths)
10955 json_object_int_add(json_path, "remoteLabel", label);
10956 else
10957 vty_out(vty, " Remote label: %d\n", label);
10958 }
10959
10960 /* Remote SID */
10961 if (path->extra && path->extra->num_sids > 0 && safi != SAFI_EVPN) {
10962 if (json_paths)
10963 json_object_string_addf(json_path, "remoteSid", "%pI6",
10964 &path->extra->sid[0].sid);
10965 else
10966 vty_out(vty, " Remote SID: %pI6\n",
10967 &path->extra->sid[0].sid);
10968 }
10969
10970 /* Label Index */
10971 if (attr->label_index != BGP_INVALID_LABEL_INDEX) {
10972 if (json_paths)
10973 json_object_int_add(json_path, "labelIndex",
10974 attr->label_index);
10975 else
10976 vty_out(vty, " Label Index: %d\n",
10977 attr->label_index);
10978 }
10979
10980 /* Line 8 display Addpath IDs */
10981 if (path->addpath_rx_id
10982 || bgp_addpath_info_has_ids(&path->tx_addpath)) {
10983 if (json_paths) {
10984 json_object_int_add(json_path, "addpathRxId",
10985 path->addpath_rx_id);
10986
10987 /* Keep backwards compatibility with the old API
10988 * by putting TX All's ID in the old field
10989 */
10990 json_object_int_add(
10991 json_path, "addpathTxId",
10992 path->tx_addpath
10993 .addpath_tx_id[BGP_ADDPATH_ALL]);
10994
10995 /* ... but create a specific field for each
10996 * strategy
10997 */
10998 for (i = 0; i < BGP_ADDPATH_MAX; i++) {
10999 json_object_int_add(
11000 json_path,
11001 bgp_addpath_names(i)->id_json_name,
11002 path->tx_addpath.addpath_tx_id[i]);
11003 }
11004 } else {
11005 vty_out(vty, " AddPath ID: RX %u, ",
11006 path->addpath_rx_id);
11007
11008 route_vty_out_tx_ids(vty, &path->tx_addpath);
11009 }
11010 }
11011
11012 /* If we used addpath to TX a non-bestpath we need to display
11013 * "Advertised to" on a path-by-path basis
11014 */
11015 if (bgp_addpath_is_addpath_used(&bgp->tx_addpath, afi, safi)) {
11016 first = 1;
11017
11018 for (ALL_LIST_ELEMENTS(bgp->peer, node, nnode, peer)) {
11019 addpath_capable =
11020 bgp_addpath_encode_tx(peer, afi, safi);
11021 has_adj = bgp_adj_out_lookup(
11022 peer, path->net,
11023 bgp_addpath_id_for_peer(peer, afi, safi,
11024 &path->tx_addpath));
11025
11026 if ((addpath_capable && has_adj)
11027 || (!addpath_capable && has_adj
11028 && CHECK_FLAG(path->flags,
11029 BGP_PATH_SELECTED))) {
11030 if (json_path && !json_adv_to)
11031 json_adv_to = json_object_new_object();
11032
11033 route_vty_out_advertised_to(
11034 vty, peer, &first,
11035 " Advertised to:", json_adv_to);
11036 }
11037 }
11038
11039 if (json_path) {
11040 if (json_adv_to) {
11041 json_object_object_add(
11042 json_path, "advertisedTo", json_adv_to);
11043 }
11044 } else {
11045 if (!first) {
11046 vty_out(vty, "\n");
11047 }
11048 }
11049 }
11050
11051 /* Line 9 display Uptime */
11052 tbuf = time(NULL) - (monotime(NULL) - path->uptime);
11053 if (json_paths) {
11054 json_last_update = json_object_new_object();
11055 json_object_int_add(json_last_update, "epoch", tbuf);
11056 json_object_string_add(json_last_update, "string",
11057 ctime(&tbuf));
11058 json_object_object_add(json_path, "lastUpdate",
11059 json_last_update);
11060 } else
11061 vty_out(vty, " Last update: %s", ctime(&tbuf));
11062
11063 /* Line 10 display PMSI tunnel attribute, if present */
11064 if (attr->flag & ATTR_FLAG_BIT(BGP_ATTR_PMSI_TUNNEL)) {
11065 const char *str = lookup_msg(bgp_pmsi_tnltype_str,
11066 bgp_attr_get_pmsi_tnl_type(attr),
11067 PMSI_TNLTYPE_STR_DEFAULT);
11068
11069 if (json_paths) {
11070 json_pmsi = json_object_new_object();
11071 json_object_string_add(json_pmsi, "tunnelType", str);
11072 json_object_int_add(json_pmsi, "label",
11073 label2vni(&attr->label));
11074 json_object_object_add(json_path, "pmsi", json_pmsi);
11075 } else
11076 vty_out(vty, " PMSI Tunnel Type: %s, label: %d\n",
11077 str, label2vni(&attr->label));
11078 }
11079
11080 if (path->peer->t_gr_restart &&
11081 CHECK_FLAG(path->flags, BGP_PATH_STALE)) {
11082 unsigned long gr_remaining =
11083 thread_timer_remain_second(path->peer->t_gr_restart);
11084
11085 if (json_paths) {
11086 json_object_int_add(json_path,
11087 "gracefulRestartSecondsRemaining",
11088 gr_remaining);
11089 } else
11090 vty_out(vty,
11091 " Time until Graceful Restart stale route deleted: %lu\n",
11092 gr_remaining);
11093 }
11094
11095 if (path->peer->t_llgr_stale[afi][safi] &&
11096 bgp_attr_get_community(attr) &&
11097 community_include(bgp_attr_get_community(attr),
11098 COMMUNITY_LLGR_STALE)) {
11099 unsigned long llgr_remaining = thread_timer_remain_second(
11100 path->peer->t_llgr_stale[afi][safi]);
11101
11102 if (json_paths) {
11103 json_object_int_add(json_path, "llgrSecondsRemaining",
11104 llgr_remaining);
11105 } else
11106 vty_out(vty,
11107 " Time until Long-lived stale route deleted: %lu\n",
11108 llgr_remaining);
11109 }
11110
11111 /* Output some debug about internal state of the dest flags */
11112 if (json_paths) {
11113 if (CHECK_FLAG(bn->flags, BGP_NODE_PROCESS_SCHEDULED))
11114 json_object_boolean_true_add(json_path, "processScheduled");
11115 if (CHECK_FLAG(bn->flags, BGP_NODE_USER_CLEAR))
11116 json_object_boolean_true_add(json_path, "userCleared");
11117 if (CHECK_FLAG(bn->flags, BGP_NODE_LABEL_CHANGED))
11118 json_object_boolean_true_add(json_path, "labelChanged");
11119 if (CHECK_FLAG(bn->flags, BGP_NODE_REGISTERED_FOR_LABEL))
11120 json_object_boolean_true_add(json_path, "registeredForLabel");
11121 if (CHECK_FLAG(bn->flags, BGP_NODE_SELECT_DEFER))
11122 json_object_boolean_true_add(json_path, "selectDefered");
11123 if (CHECK_FLAG(bn->flags, BGP_NODE_FIB_INSTALLED))
11124 json_object_boolean_true_add(json_path, "fibInstalled");
11125 if (CHECK_FLAG(bn->flags, BGP_NODE_FIB_INSTALL_PENDING))
11126 json_object_boolean_true_add(json_path, "fibPending");
11127
11128 if (json_nexthop_global || json_nexthop_ll) {
11129 json_nexthops = json_object_new_array();
11130
11131 if (json_nexthop_global)
11132 json_object_array_add(json_nexthops,
11133 json_nexthop_global);
11134
11135 if (json_nexthop_ll)
11136 json_object_array_add(json_nexthops,
11137 json_nexthop_ll);
11138
11139 json_object_object_add(json_path, "nexthops",
11140 json_nexthops);
11141 }
11142
11143 json_object_object_add(json_path, "peer", json_peer);
11144 json_object_array_add(json_paths, json_path);
11145 }
11146 }
11147
11148 #define BGP_SHOW_HEADER_CSV "Flags, Network, Next Hop, Metric, LocPrf, Weight, Path"
11149 #define BGP_SHOW_DAMP_HEADER " Network From Reuse Path\n"
11150 #define BGP_SHOW_FLAP_HEADER " Network From Flaps Duration Reuse Path\n"
11151
11152 static int bgp_show_regexp(struct vty *vty, struct bgp *bgp, const char *regstr,
11153 afi_t afi, safi_t safi, enum bgp_show_type type,
11154 bool use_json);
11155 static int bgp_show_community(struct vty *vty, struct bgp *bgp,
11156 const char *comstr, int exact, afi_t afi,
11157 safi_t safi, uint16_t show_flags);
11158
11159 static int bgp_show_table(struct vty *vty, struct bgp *bgp, safi_t safi,
11160 struct bgp_table *table, enum bgp_show_type type,
11161 void *output_arg, const char *rd, int is_last,
11162 unsigned long *output_cum, unsigned long *total_cum,
11163 unsigned long *json_header_depth, uint16_t show_flags,
11164 enum rpki_states rpki_target_state)
11165 {
11166 struct bgp_path_info *pi;
11167 struct bgp_dest *dest;
11168 bool header = true;
11169 bool json_detail_header = false;
11170 int display;
11171 unsigned long output_count = 0;
11172 unsigned long total_count = 0;
11173 struct prefix *p;
11174 json_object *json_paths = NULL;
11175 int first = 1;
11176 bool use_json = CHECK_FLAG(show_flags, BGP_SHOW_OPT_JSON);
11177 bool wide = CHECK_FLAG(show_flags, BGP_SHOW_OPT_WIDE);
11178 bool all = CHECK_FLAG(show_flags, BGP_SHOW_OPT_AFI_ALL);
11179 bool detail_json = CHECK_FLAG(show_flags, BGP_SHOW_OPT_JSON_DETAIL);
11180 bool detail_routes = CHECK_FLAG(show_flags, BGP_SHOW_OPT_ROUTES_DETAIL);
11181
11182 if (output_cum && *output_cum != 0)
11183 header = false;
11184
11185 if (use_json && !*json_header_depth) {
11186 if (all)
11187 *json_header_depth = 1;
11188 else {
11189 vty_out(vty, "{\n");
11190 *json_header_depth = 2;
11191 }
11192
11193 vty_out(vty,
11194 " \"vrfId\": %d,\n \"vrfName\": \"%s\",\n \"tableVersion\": %" PRId64
11195 ",\n \"routerId\": \"%pI4\",\n \"defaultLocPrf\": %u,\n"
11196 " \"localAS\": %u,\n \"routes\": { ",
11197 bgp->vrf_id == VRF_UNKNOWN ? -1 : (int)bgp->vrf_id,
11198 bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT
11199 ? VRF_DEFAULT_NAME
11200 : bgp->name,
11201 table->version, &bgp->router_id,
11202 bgp->default_local_pref, bgp->as);
11203 if (rd) {
11204 vty_out(vty, " \"routeDistinguishers\" : {");
11205 ++*json_header_depth;
11206 }
11207 }
11208
11209 if (use_json && rd) {
11210 vty_out(vty, " \"%s\" : { ", rd);
11211 }
11212
11213 /* Check for 'json detail', where we need header output once per dest */
11214 if (use_json && detail_json && type != bgp_show_type_dampend_paths &&
11215 type != bgp_show_type_damp_neighbor &&
11216 type != bgp_show_type_flap_statistics &&
11217 type != bgp_show_type_flap_neighbor)
11218 json_detail_header = true;
11219
11220 /* Start processing of routes. */
11221 for (dest = bgp_table_top(table); dest; dest = bgp_route_next(dest)) {
11222 const struct prefix *dest_p = bgp_dest_get_prefix(dest);
11223 enum rpki_states rpki_curr_state = RPKI_NOT_BEING_USED;
11224 bool json_detail = json_detail_header;
11225
11226 pi = bgp_dest_get_bgp_path_info(dest);
11227 if (pi == NULL)
11228 continue;
11229
11230 display = 0;
11231 if (use_json)
11232 json_paths = json_object_new_array();
11233 else
11234 json_paths = NULL;
11235
11236 for (; pi; pi = pi->next) {
11237 struct community *picomm = NULL;
11238
11239 picomm = bgp_attr_get_community(pi->attr);
11240
11241 total_count++;
11242
11243 if (type == bgp_show_type_prefix_version) {
11244 uint32_t version =
11245 strtoul(output_arg, NULL, 10);
11246 if (dest->version < version)
11247 continue;
11248 }
11249
11250 if (type == bgp_show_type_community_alias) {
11251 char *alias = output_arg;
11252 char **communities;
11253 int num;
11254 bool found = false;
11255
11256 if (picomm) {
11257 frrstr_split(picomm->str, " ",
11258 &communities, &num);
11259 for (int i = 0; i < num; i++) {
11260 const char *com2alias =
11261 bgp_community2alias(
11262 communities[i]);
11263 if (!found
11264 && strcmp(alias, com2alias)
11265 == 0)
11266 found = true;
11267 XFREE(MTYPE_TMP,
11268 communities[i]);
11269 }
11270 XFREE(MTYPE_TMP, communities);
11271 }
11272
11273 if (!found &&
11274 bgp_attr_get_lcommunity(pi->attr)) {
11275 frrstr_split(bgp_attr_get_lcommunity(
11276 pi->attr)
11277 ->str,
11278 " ", &communities, &num);
11279 for (int i = 0; i < num; i++) {
11280 const char *com2alias =
11281 bgp_community2alias(
11282 communities[i]);
11283 if (!found
11284 && strcmp(alias, com2alias)
11285 == 0)
11286 found = true;
11287 XFREE(MTYPE_TMP,
11288 communities[i]);
11289 }
11290 XFREE(MTYPE_TMP, communities);
11291 }
11292
11293 if (!found)
11294 continue;
11295 }
11296
11297 if (type == bgp_show_type_rpki) {
11298 if (dest_p->family == AF_INET
11299 || dest_p->family == AF_INET6)
11300 rpki_curr_state = hook_call(
11301 bgp_rpki_prefix_status,
11302 pi->peer, pi->attr, dest_p);
11303 if (rpki_target_state != RPKI_NOT_BEING_USED
11304 && rpki_curr_state != rpki_target_state)
11305 continue;
11306 }
11307
11308 if (type == bgp_show_type_flap_statistics
11309 || type == bgp_show_type_flap_neighbor
11310 || type == bgp_show_type_dampend_paths
11311 || type == bgp_show_type_damp_neighbor) {
11312 if (!(pi->extra && pi->extra->damp_info))
11313 continue;
11314 }
11315 if (type == bgp_show_type_regexp) {
11316 regex_t *regex = output_arg;
11317
11318 if (bgp_regexec(regex, pi->attr->aspath)
11319 == REG_NOMATCH)
11320 continue;
11321 }
11322 if (type == bgp_show_type_prefix_list) {
11323 struct prefix_list *plist = output_arg;
11324
11325 if (prefix_list_apply(plist, dest_p)
11326 != PREFIX_PERMIT)
11327 continue;
11328 }
11329 if (type == bgp_show_type_access_list) {
11330 struct access_list *alist = output_arg;
11331
11332 if (access_list_apply(alist, dest_p) !=
11333 FILTER_PERMIT)
11334 continue;
11335 }
11336 if (type == bgp_show_type_filter_list) {
11337 struct as_list *as_list = output_arg;
11338
11339 if (as_list_apply(as_list, pi->attr->aspath)
11340 != AS_FILTER_PERMIT)
11341 continue;
11342 }
11343 if (type == bgp_show_type_route_map) {
11344 struct route_map *rmap = output_arg;
11345 struct bgp_path_info path;
11346 struct bgp_path_info_extra extra;
11347 struct attr dummy_attr = {};
11348 route_map_result_t ret;
11349
11350 dummy_attr = *pi->attr;
11351
11352 prep_for_rmap_apply(&path, &extra, dest, pi,
11353 pi->peer, &dummy_attr);
11354
11355 ret = route_map_apply(rmap, dest_p, &path);
11356 bgp_attr_flush(&dummy_attr);
11357 if (ret == RMAP_DENYMATCH)
11358 continue;
11359 }
11360 if (type == bgp_show_type_neighbor
11361 || type == bgp_show_type_flap_neighbor
11362 || type == bgp_show_type_damp_neighbor) {
11363 union sockunion *su = output_arg;
11364
11365 if (pi->peer == NULL
11366 || pi->peer->su_remote == NULL
11367 || !sockunion_same(pi->peer->su_remote, su))
11368 continue;
11369 }
11370 if (type == bgp_show_type_cidr_only) {
11371 uint32_t destination;
11372
11373 destination = ntohl(dest_p->u.prefix4.s_addr);
11374 if (IN_CLASSC(destination)
11375 && dest_p->prefixlen == 24)
11376 continue;
11377 if (IN_CLASSB(destination)
11378 && dest_p->prefixlen == 16)
11379 continue;
11380 if (IN_CLASSA(destination)
11381 && dest_p->prefixlen == 8)
11382 continue;
11383 }
11384 if (type == bgp_show_type_prefix_longer) {
11385 p = output_arg;
11386 if (!prefix_match(p, dest_p))
11387 continue;
11388 }
11389 if (type == bgp_show_type_community_all) {
11390 if (!picomm)
11391 continue;
11392 }
11393 if (type == bgp_show_type_community) {
11394 struct community *com = output_arg;
11395
11396 if (!picomm || !community_match(picomm, com))
11397 continue;
11398 }
11399 if (type == bgp_show_type_community_exact) {
11400 struct community *com = output_arg;
11401
11402 if (!picomm || !community_cmp(picomm, com))
11403 continue;
11404 }
11405 if (type == bgp_show_type_community_list) {
11406 struct community_list *list = output_arg;
11407
11408 if (!community_list_match(picomm, list))
11409 continue;
11410 }
11411 if (type == bgp_show_type_community_list_exact) {
11412 struct community_list *list = output_arg;
11413
11414 if (!community_list_exact_match(picomm, list))
11415 continue;
11416 }
11417 if (type == bgp_show_type_lcommunity) {
11418 struct lcommunity *lcom = output_arg;
11419
11420 if (!bgp_attr_get_lcommunity(pi->attr) ||
11421 !lcommunity_match(
11422 bgp_attr_get_lcommunity(pi->attr),
11423 lcom))
11424 continue;
11425 }
11426
11427 if (type == bgp_show_type_lcommunity_exact) {
11428 struct lcommunity *lcom = output_arg;
11429
11430 if (!bgp_attr_get_lcommunity(pi->attr) ||
11431 !lcommunity_cmp(
11432 bgp_attr_get_lcommunity(pi->attr),
11433 lcom))
11434 continue;
11435 }
11436 if (type == bgp_show_type_lcommunity_list) {
11437 struct community_list *list = output_arg;
11438
11439 if (!lcommunity_list_match(
11440 bgp_attr_get_lcommunity(pi->attr),
11441 list))
11442 continue;
11443 }
11444 if (type
11445 == bgp_show_type_lcommunity_list_exact) {
11446 struct community_list *list = output_arg;
11447
11448 if (!lcommunity_list_exact_match(
11449 bgp_attr_get_lcommunity(pi->attr),
11450 list))
11451 continue;
11452 }
11453 if (type == bgp_show_type_lcommunity_all) {
11454 if (!bgp_attr_get_lcommunity(pi->attr))
11455 continue;
11456 }
11457 if (type == bgp_show_type_dampend_paths
11458 || type == bgp_show_type_damp_neighbor) {
11459 if (!CHECK_FLAG(pi->flags, BGP_PATH_DAMPED)
11460 || CHECK_FLAG(pi->flags, BGP_PATH_HISTORY))
11461 continue;
11462 }
11463
11464 if (!use_json && header) {
11465 vty_out(vty,
11466 "BGP table version is %" PRIu64
11467 ", local router ID is %pI4, vrf id ",
11468 table->version, &bgp->router_id);
11469 if (bgp->vrf_id == VRF_UNKNOWN)
11470 vty_out(vty, "%s", VRFID_NONE_STR);
11471 else
11472 vty_out(vty, "%u", bgp->vrf_id);
11473 vty_out(vty, "\n");
11474 vty_out(vty, "Default local pref %u, ",
11475 bgp->default_local_pref);
11476 vty_out(vty, "local AS %u\n", bgp->as);
11477 if (!detail_routes) {
11478 vty_out(vty, BGP_SHOW_SCODE_HEADER);
11479 vty_out(vty, BGP_SHOW_NCODE_HEADER);
11480 vty_out(vty, BGP_SHOW_OCODE_HEADER);
11481 vty_out(vty, BGP_SHOW_RPKI_HEADER);
11482 }
11483 if (type == bgp_show_type_dampend_paths
11484 || type == bgp_show_type_damp_neighbor)
11485 vty_out(vty, BGP_SHOW_DAMP_HEADER);
11486 else if (type == bgp_show_type_flap_statistics
11487 || type == bgp_show_type_flap_neighbor)
11488 vty_out(vty, BGP_SHOW_FLAP_HEADER);
11489 else if (!detail_routes)
11490 vty_out(vty, (wide ? BGP_SHOW_HEADER_WIDE
11491 : BGP_SHOW_HEADER));
11492 header = false;
11493
11494 } else if (json_detail && json_paths != NULL) {
11495 const struct prefix_rd *prd;
11496 json_object *jtemp;
11497
11498 /* Use common detail header, for most types;
11499 * need a json 'object'.
11500 */
11501
11502 jtemp = json_object_new_object();
11503 prd = bgp_rd_from_dest(dest, safi);
11504
11505 route_vty_out_detail_header(
11506 vty, bgp, dest,
11507 bgp_dest_get_prefix(dest), prd,
11508 table->afi, safi, jtemp);
11509
11510 json_object_array_add(json_paths, jtemp);
11511
11512 json_detail = false;
11513 }
11514
11515 if (rd != NULL && !display && !output_count) {
11516 if (!use_json)
11517 vty_out(vty,
11518 "Route Distinguisher: %s\n",
11519 rd);
11520 }
11521 if (type == bgp_show_type_dampend_paths
11522 || type == bgp_show_type_damp_neighbor)
11523 damp_route_vty_out(vty, dest_p, pi, display,
11524 AFI_IP, safi, use_json,
11525 json_paths);
11526 else if (type == bgp_show_type_flap_statistics
11527 || type == bgp_show_type_flap_neighbor)
11528 flap_route_vty_out(vty, dest_p, pi, display,
11529 AFI_IP, safi, use_json,
11530 json_paths);
11531 else {
11532 if (detail_routes || detail_json) {
11533 const struct prefix_rd *prd = NULL;
11534
11535 if (dest->pdest)
11536 prd = bgp_rd_from_dest(
11537 dest->pdest, safi);
11538
11539 if (!use_json)
11540 route_vty_out_detail_header(
11541 vty, bgp, dest,
11542 bgp_dest_get_prefix(
11543 dest),
11544 prd, table->afi, safi,
11545 NULL);
11546
11547 route_vty_out_detail(
11548 vty, bgp, dest, dest_p, pi,
11549 family2afi(dest_p->family),
11550 safi, RPKI_NOT_BEING_USED,
11551 json_paths);
11552 } else {
11553 route_vty_out(vty, dest_p, pi, display,
11554 safi, json_paths, wide);
11555 }
11556 }
11557 display++;
11558 }
11559
11560 if (display) {
11561 output_count++;
11562 if (!use_json)
11563 continue;
11564
11565 /* encode prefix */
11566 if (dest_p->family == AF_FLOWSPEC) {
11567 char retstr[BGP_FLOWSPEC_STRING_DISPLAY_MAX];
11568
11569
11570 bgp_fs_nlri_get_string(
11571 (unsigned char *)
11572 dest_p->u.prefix_flowspec.ptr,
11573 dest_p->u.prefix_flowspec.prefixlen,
11574 retstr, NLRI_STRING_FORMAT_MIN, NULL,
11575 family2afi(dest_p->u
11576 .prefix_flowspec.family));
11577 if (first)
11578 vty_out(vty, "\"%s/%d\": ", retstr,
11579 dest_p->u.prefix_flowspec
11580 .prefixlen);
11581 else
11582 vty_out(vty, ",\"%s/%d\": ", retstr,
11583 dest_p->u.prefix_flowspec
11584 .prefixlen);
11585 } else {
11586 if (first)
11587 vty_out(vty, "\"%pFX\": ", dest_p);
11588 else
11589 vty_out(vty, ",\"%pFX\": ", dest_p);
11590 }
11591 /*
11592 * We are using no_pretty here because under
11593 * extremely high settings( say lots and lots of
11594 * routes with lots and lots of ways to reach
11595 * that route via different paths ) this can
11596 * save several minutes of output when FRR
11597 * is run on older cpu's or more underperforming
11598 * routers out there
11599 */
11600 vty_json_no_pretty(vty, json_paths);
11601 json_paths = NULL;
11602 first = 0;
11603 } else
11604 json_object_free(json_paths);
11605 }
11606
11607 if (output_cum) {
11608 output_count += *output_cum;
11609 *output_cum = output_count;
11610 }
11611 if (total_cum) {
11612 total_count += *total_cum;
11613 *total_cum = total_count;
11614 }
11615 if (use_json) {
11616 if (rd) {
11617 vty_out(vty, " }%s ", (is_last ? "" : ","));
11618 }
11619 if (is_last) {
11620 unsigned long i;
11621 for (i = 0; i < *json_header_depth; ++i)
11622 vty_out(vty, " } ");
11623 if (!all)
11624 vty_out(vty, "\n");
11625 }
11626 } else {
11627 if (is_last) {
11628 /* No route is displayed */
11629 if (output_count == 0) {
11630 if (type == bgp_show_type_normal)
11631 vty_out(vty,
11632 "No BGP prefixes displayed, %ld exist\n",
11633 total_count);
11634 } else
11635 vty_out(vty,
11636 "\nDisplayed %ld routes and %ld total paths\n",
11637 output_count, total_count);
11638 }
11639 }
11640
11641 return CMD_SUCCESS;
11642 }
11643
11644 int bgp_show_table_rd(struct vty *vty, struct bgp *bgp, safi_t safi,
11645 struct bgp_table *table, struct prefix_rd *prd_match,
11646 enum bgp_show_type type, void *output_arg,
11647 uint16_t show_flags)
11648 {
11649 struct bgp_dest *dest, *next;
11650 unsigned long output_cum = 0;
11651 unsigned long total_cum = 0;
11652 unsigned long json_header_depth = 0;
11653 struct bgp_table *itable;
11654 bool show_msg;
11655 bool use_json = !!CHECK_FLAG(show_flags, BGP_SHOW_OPT_JSON);
11656
11657 show_msg = (!use_json && type == bgp_show_type_normal);
11658
11659 for (dest = bgp_table_top(table); dest; dest = next) {
11660 const struct prefix *dest_p = bgp_dest_get_prefix(dest);
11661
11662 next = bgp_route_next(dest);
11663 if (prd_match && memcmp(dest_p->u.val, prd_match->val, 8) != 0)
11664 continue;
11665
11666 itable = bgp_dest_get_bgp_table_info(dest);
11667 if (itable != NULL) {
11668 struct prefix_rd prd;
11669 char rd[RD_ADDRSTRLEN];
11670
11671 memcpy(&prd, dest_p, sizeof(struct prefix_rd));
11672 prefix_rd2str(&prd, rd, sizeof(rd));
11673 bgp_show_table(vty, bgp, safi, itable, type, output_arg,
11674 rd, next == NULL, &output_cum,
11675 &total_cum, &json_header_depth,
11676 show_flags, RPKI_NOT_BEING_USED);
11677 if (next == NULL)
11678 show_msg = false;
11679 }
11680 }
11681 if (show_msg) {
11682 if (output_cum == 0)
11683 vty_out(vty, "No BGP prefixes displayed, %ld exist\n",
11684 total_cum);
11685 else
11686 vty_out(vty,
11687 "\nDisplayed %ld routes and %ld total paths\n",
11688 output_cum, total_cum);
11689 } else {
11690 if (use_json && output_cum == 0)
11691 vty_out(vty, "{}\n");
11692 }
11693 return CMD_SUCCESS;
11694 }
11695
11696 static int bgp_show(struct vty *vty, struct bgp *bgp, afi_t afi, safi_t safi,
11697 enum bgp_show_type type, void *output_arg,
11698 uint16_t show_flags, enum rpki_states rpki_target_state)
11699 {
11700 struct bgp_table *table;
11701 unsigned long json_header_depth = 0;
11702 bool use_json = CHECK_FLAG(show_flags, BGP_SHOW_OPT_JSON);
11703
11704 if (bgp == NULL) {
11705 bgp = bgp_get_default();
11706 }
11707
11708 if (bgp == NULL) {
11709 if (!use_json)
11710 vty_out(vty, "No BGP process is configured\n");
11711 else
11712 vty_out(vty, "{}\n");
11713 return CMD_WARNING;
11714 }
11715
11716 /* Labeled-unicast routes live in the unicast table. */
11717 if (safi == SAFI_LABELED_UNICAST)
11718 safi = SAFI_UNICAST;
11719
11720 table = bgp->rib[afi][safi];
11721 /* use MPLS and ENCAP specific shows until they are merged */
11722 if (safi == SAFI_MPLS_VPN) {
11723 return bgp_show_table_rd(vty, bgp, safi, table, NULL, type,
11724 output_arg, show_flags);
11725 }
11726
11727 if (safi == SAFI_FLOWSPEC && type == bgp_show_type_detail) {
11728 return bgp_show_table_flowspec(vty, bgp, afi, table, type,
11729 output_arg, use_json,
11730 1, NULL, NULL);
11731 }
11732
11733 if (safi == SAFI_EVPN)
11734 return bgp_evpn_show_all_routes(vty, bgp, type, use_json, 0);
11735
11736 return bgp_show_table(vty, bgp, safi, table, type, output_arg, NULL, 1,
11737 NULL, NULL, &json_header_depth, show_flags,
11738 rpki_target_state);
11739 }
11740
11741 static void bgp_show_all_instances_routes_vty(struct vty *vty, afi_t afi,
11742 safi_t safi, uint16_t show_flags)
11743 {
11744 struct listnode *node, *nnode;
11745 struct bgp *bgp;
11746 int is_first = 1;
11747 bool route_output = false;
11748 bool use_json = CHECK_FLAG(show_flags, BGP_SHOW_OPT_JSON);
11749
11750 if (use_json)
11751 vty_out(vty, "{\n");
11752
11753 for (ALL_LIST_ELEMENTS(bm->bgp, node, nnode, bgp)) {
11754 route_output = true;
11755 if (use_json) {
11756 if (!is_first)
11757 vty_out(vty, ",\n");
11758 else
11759 is_first = 0;
11760
11761 vty_out(vty, "\"%s\":",
11762 (bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)
11763 ? VRF_DEFAULT_NAME
11764 : bgp->name);
11765 } else {
11766 vty_out(vty, "\nInstance %s:\n",
11767 (bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)
11768 ? VRF_DEFAULT_NAME
11769 : bgp->name);
11770 }
11771 bgp_show(vty, bgp, afi, safi, bgp_show_type_normal, NULL,
11772 show_flags, RPKI_NOT_BEING_USED);
11773 }
11774
11775 if (use_json)
11776 vty_out(vty, "}\n");
11777 else if (!route_output)
11778 vty_out(vty, "%% BGP instance not found\n");
11779 }
11780
11781 /* Header of detailed BGP route information */
11782 void route_vty_out_detail_header(struct vty *vty, struct bgp *bgp,
11783 struct bgp_dest *dest, const struct prefix *p,
11784 const struct prefix_rd *prd, afi_t afi,
11785 safi_t safi, json_object *json)
11786 {
11787 struct bgp_path_info *pi;
11788 struct peer *peer;
11789 struct listnode *node, *nnode;
11790 char buf1[RD_ADDRSTRLEN];
11791 int count = 0;
11792 int best = 0;
11793 int suppress = 0;
11794 int accept_own = 0;
11795 int route_filter_translated_v4 = 0;
11796 int route_filter_v4 = 0;
11797 int route_filter_translated_v6 = 0;
11798 int route_filter_v6 = 0;
11799 int llgr_stale = 0;
11800 int no_llgr = 0;
11801 int accept_own_nexthop = 0;
11802 int blackhole = 0;
11803 int no_export = 0;
11804 int no_advertise = 0;
11805 int local_as = 0;
11806 int no_peer = 0;
11807 int first = 1;
11808 int has_valid_label = 0;
11809 mpls_label_t label = 0;
11810 json_object *json_adv_to = NULL;
11811 uint32_t ttl = 0;
11812 uint32_t bos = 0;
11813 uint32_t exp = 0;
11814
11815 mpls_lse_decode(dest->local_label, &label, &ttl, &exp, &bos);
11816
11817 has_valid_label = bgp_is_valid_label(&label);
11818
11819 if (safi == SAFI_EVPN) {
11820 if (!json) {
11821 vty_out(vty, "BGP routing table entry for %s%s%pFX\n",
11822 prd ? prefix_rd2str(prd, buf1, sizeof(buf1))
11823 : "",
11824 prd ? ":" : "", (struct prefix_evpn *)p);
11825 } else {
11826 json_object_string_add(json, "rd",
11827 prd ? prefix_rd2str(prd, buf1, sizeof(buf1)) :
11828 "");
11829 bgp_evpn_route2json((struct prefix_evpn *)p, json);
11830 }
11831 } else {
11832 if (!json) {
11833 vty_out(vty,
11834 "BGP routing table entry for %s%s%pFX, version %" PRIu64
11835 "\n",
11836 ((safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP)
11837 ? prefix_rd2str(prd, buf1,
11838 sizeof(buf1))
11839 : ""),
11840 safi == SAFI_MPLS_VPN ? ":" : "", p,
11841 dest->version);
11842
11843 } else {
11844 json_object_string_addf(json, "prefix", "%pFX", p);
11845 json_object_int_add(json, "version", dest->version);
11846
11847 }
11848 }
11849
11850 if (has_valid_label) {
11851 if (json)
11852 json_object_int_add(json, "localLabel", label);
11853 else
11854 vty_out(vty, "Local label: %d\n", label);
11855 }
11856
11857 if (!json)
11858 if (bgp_labeled_safi(safi) && safi != SAFI_EVPN)
11859 vty_out(vty, "not allocated\n");
11860
11861 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next) {
11862 struct community *picomm = NULL;
11863
11864 picomm = bgp_attr_get_community(pi->attr);
11865
11866 count++;
11867 if (CHECK_FLAG(pi->flags, BGP_PATH_SELECTED)) {
11868 best = count;
11869 if (bgp_path_suppressed(pi))
11870 suppress = 1;
11871
11872 if (!picomm)
11873 continue;
11874
11875 no_advertise += community_include(
11876 picomm, COMMUNITY_NO_ADVERTISE);
11877 no_export +=
11878 community_include(picomm, COMMUNITY_NO_EXPORT);
11879 local_as +=
11880 community_include(picomm, COMMUNITY_LOCAL_AS);
11881 accept_own +=
11882 community_include(picomm, COMMUNITY_ACCEPT_OWN);
11883 route_filter_translated_v4 += community_include(
11884 picomm, COMMUNITY_ROUTE_FILTER_TRANSLATED_v4);
11885 route_filter_translated_v6 += community_include(
11886 picomm, COMMUNITY_ROUTE_FILTER_TRANSLATED_v6);
11887 route_filter_v4 += community_include(
11888 picomm, COMMUNITY_ROUTE_FILTER_v4);
11889 route_filter_v6 += community_include(
11890 picomm, COMMUNITY_ROUTE_FILTER_v6);
11891 llgr_stale +=
11892 community_include(picomm, COMMUNITY_LLGR_STALE);
11893 no_llgr += community_include(picomm, COMMUNITY_NO_LLGR);
11894 accept_own_nexthop += community_include(
11895 picomm, COMMUNITY_ACCEPT_OWN_NEXTHOP);
11896 blackhole +=
11897 community_include(picomm, COMMUNITY_BLACKHOLE);
11898 no_peer += community_include(picomm, COMMUNITY_NO_PEER);
11899 }
11900 }
11901
11902 if (!json) {
11903 vty_out(vty, "Paths: (%d available", count);
11904 if (best) {
11905 vty_out(vty, ", best #%d", best);
11906 if (safi == SAFI_UNICAST) {
11907 if (bgp->inst_type == BGP_INSTANCE_TYPE_DEFAULT)
11908 vty_out(vty, ", table %s",
11909 VRF_DEFAULT_NAME);
11910 else
11911 vty_out(vty, ", vrf %s",
11912 bgp->name);
11913 }
11914 } else
11915 vty_out(vty, ", no best path");
11916
11917 if (accept_own)
11918 vty_out(vty,
11919 ", accept own local route exported and imported in different VRF");
11920 else if (route_filter_translated_v4)
11921 vty_out(vty,
11922 ", mark translated RTs for VPNv4 route filtering");
11923 else if (route_filter_v4)
11924 vty_out(vty,
11925 ", attach RT as-is for VPNv4 route filtering");
11926 else if (route_filter_translated_v6)
11927 vty_out(vty,
11928 ", mark translated RTs for VPNv6 route filtering");
11929 else if (route_filter_v6)
11930 vty_out(vty,
11931 ", attach RT as-is for VPNv6 route filtering");
11932 else if (llgr_stale)
11933 vty_out(vty,
11934 ", mark routes to be retained for a longer time. Requires support for Long-lived BGP Graceful Restart");
11935 else if (no_llgr)
11936 vty_out(vty,
11937 ", mark routes to not be treated according to Long-lived BGP Graceful Restart operations");
11938 else if (accept_own_nexthop)
11939 vty_out(vty,
11940 ", accept local nexthop");
11941 else if (blackhole)
11942 vty_out(vty, ", inform peer to blackhole prefix");
11943 else if (no_export)
11944 vty_out(vty, ", not advertised to EBGP peer");
11945 else if (no_advertise)
11946 vty_out(vty, ", not advertised to any peer");
11947 else if (local_as)
11948 vty_out(vty, ", not advertised outside local AS");
11949 else if (no_peer)
11950 vty_out(vty,
11951 ", inform EBGP peer not to advertise to their EBGP peers");
11952
11953 if (suppress)
11954 vty_out(vty,
11955 ", Advertisements suppressed by an aggregate.");
11956 vty_out(vty, ")\n");
11957 }
11958
11959 /* If we are not using addpath then we can display Advertised to and
11960 * that will
11961 * show what peers we advertised the bestpath to. If we are using
11962 * addpath
11963 * though then we must display Advertised to on a path-by-path basis. */
11964 if (!bgp_addpath_is_addpath_used(&bgp->tx_addpath, afi, safi)) {
11965 for (ALL_LIST_ELEMENTS(bgp->peer, node, nnode, peer)) {
11966 if (bgp_adj_out_lookup(peer, dest, 0)) {
11967 if (json && !json_adv_to)
11968 json_adv_to = json_object_new_object();
11969
11970 route_vty_out_advertised_to(
11971 vty, peer, &first,
11972 " Advertised to non peer-group peers:\n ",
11973 json_adv_to);
11974 }
11975 }
11976
11977 if (json) {
11978 if (json_adv_to) {
11979 json_object_object_add(json, "advertisedTo",
11980 json_adv_to);
11981 }
11982 } else {
11983 if (first)
11984 vty_out(vty, " Not advertised to any peer");
11985 vty_out(vty, "\n");
11986 }
11987 }
11988 }
11989
11990 static void bgp_show_path_info(const struct prefix_rd *pfx_rd,
11991 struct bgp_dest *bgp_node, struct vty *vty,
11992 struct bgp *bgp, afi_t afi, safi_t safi,
11993 json_object *json, enum bgp_path_type pathtype,
11994 int *display, enum rpki_states rpki_target_state)
11995 {
11996 struct bgp_path_info *pi;
11997 int header = 1;
11998 json_object *json_header = NULL;
11999 json_object *json_paths = NULL;
12000 const struct prefix *p = bgp_dest_get_prefix(bgp_node);
12001
12002 for (pi = bgp_dest_get_bgp_path_info(bgp_node); pi; pi = pi->next) {
12003 enum rpki_states rpki_curr_state = RPKI_NOT_BEING_USED;
12004
12005 if (p->family == AF_INET || p->family == AF_INET6)
12006 rpki_curr_state = hook_call(bgp_rpki_prefix_status,
12007 pi->peer, pi->attr, p);
12008
12009 if (rpki_target_state != RPKI_NOT_BEING_USED
12010 && rpki_curr_state != rpki_target_state)
12011 continue;
12012
12013 if (json && !json_paths) {
12014 /* Instantiate json_paths only if path is valid */
12015 json_paths = json_object_new_array();
12016 if (pfx_rd)
12017 json_header = json_object_new_object();
12018 else
12019 json_header = json;
12020 }
12021
12022 if (header) {
12023 route_vty_out_detail_header(
12024 vty, bgp, bgp_node,
12025 bgp_dest_get_prefix(bgp_node), pfx_rd, AFI_IP,
12026 safi, json_header);
12027 header = 0;
12028 }
12029 (*display)++;
12030
12031 if (pathtype == BGP_PATH_SHOW_ALL
12032 || (pathtype == BGP_PATH_SHOW_BESTPATH
12033 && CHECK_FLAG(pi->flags, BGP_PATH_SELECTED))
12034 || (pathtype == BGP_PATH_SHOW_MULTIPATH
12035 && (CHECK_FLAG(pi->flags, BGP_PATH_MULTIPATH)
12036 || CHECK_FLAG(pi->flags, BGP_PATH_SELECTED))))
12037 route_vty_out_detail(vty, bgp, bgp_node,
12038 bgp_dest_get_prefix(bgp_node), pi,
12039 AFI_IP, safi, rpki_curr_state,
12040 json_paths);
12041 }
12042
12043 if (json && json_paths) {
12044 json_object_object_add(json_header, "paths", json_paths);
12045
12046 if (pfx_rd)
12047 json_object_object_addf(json, json_header, "%pRD",
12048 pfx_rd);
12049 }
12050 }
12051
12052 /*
12053 * Return rd based on safi
12054 */
12055 const struct prefix_rd *bgp_rd_from_dest(const struct bgp_dest *dest,
12056 safi_t safi)
12057 {
12058 switch (safi) {
12059 case SAFI_MPLS_VPN:
12060 case SAFI_ENCAP:
12061 case SAFI_EVPN:
12062 return (struct prefix_rd *)(bgp_dest_get_prefix(dest));
12063 default:
12064 return NULL;
12065 }
12066 }
12067
12068 /* Display specified route of BGP table. */
12069 static int bgp_show_route_in_table(struct vty *vty, struct bgp *bgp,
12070 struct bgp_table *rib, const char *ip_str,
12071 afi_t afi, safi_t safi,
12072 enum rpki_states rpki_target_state,
12073 struct prefix_rd *prd, int prefix_check,
12074 enum bgp_path_type pathtype, bool use_json)
12075 {
12076 int ret;
12077 int display = 0;
12078 struct prefix match;
12079 struct bgp_dest *dest;
12080 struct bgp_dest *rm;
12081 struct bgp_table *table;
12082 json_object *json = NULL;
12083 json_object *json_paths = NULL;
12084
12085 /* Check IP address argument. */
12086 ret = str2prefix(ip_str, &match);
12087 if (!ret) {
12088 vty_out(vty, "address is malformed\n");
12089 return CMD_WARNING;
12090 }
12091
12092 match.family = afi2family(afi);
12093
12094 if (use_json)
12095 json = json_object_new_object();
12096
12097 if (safi == SAFI_MPLS_VPN || safi == SAFI_ENCAP) {
12098 for (dest = bgp_table_top(rib); dest;
12099 dest = bgp_route_next(dest)) {
12100 const struct prefix *dest_p = bgp_dest_get_prefix(dest);
12101
12102 if (prd && memcmp(dest_p->u.val, prd->val, 8) != 0)
12103 continue;
12104 table = bgp_dest_get_bgp_table_info(dest);
12105 if (!table)
12106 continue;
12107
12108 rm = bgp_node_match(table, &match);
12109 if (rm == NULL)
12110 continue;
12111
12112 const struct prefix *rm_p = bgp_dest_get_prefix(rm);
12113 if (prefix_check
12114 && rm_p->prefixlen != match.prefixlen) {
12115 bgp_dest_unlock_node(rm);
12116 continue;
12117 }
12118
12119 bgp_show_path_info((struct prefix_rd *)dest_p, rm, vty,
12120 bgp, afi, safi, json, pathtype,
12121 &display, rpki_target_state);
12122
12123 bgp_dest_unlock_node(rm);
12124 }
12125 } else if (safi == SAFI_EVPN) {
12126 struct bgp_dest *longest_pfx;
12127 bool is_exact_pfxlen_match = false;
12128
12129 for (dest = bgp_table_top(rib); dest;
12130 dest = bgp_route_next(dest)) {
12131 const struct prefix *dest_p = bgp_dest_get_prefix(dest);
12132
12133 if (prd && memcmp(&dest_p->u.val, prd->val, 8) != 0)
12134 continue;
12135 table = bgp_dest_get_bgp_table_info(dest);
12136 if (!table)
12137 continue;
12138
12139 longest_pfx = NULL;
12140 is_exact_pfxlen_match = false;
12141 /*
12142 * Search through all the prefixes for a match. The
12143 * pfx's are enumerated in ascending order of pfxlens.
12144 * So, the last pfx match is the longest match. Set
12145 * is_exact_pfxlen_match when we get exact pfxlen match
12146 */
12147 for (rm = bgp_table_top(table); rm;
12148 rm = bgp_route_next(rm)) {
12149 const struct prefix *rm_p =
12150 bgp_dest_get_prefix(rm);
12151 /*
12152 * Get prefixlen of the ip-prefix within type5
12153 * evpn route
12154 */
12155 if (evpn_type5_prefix_match(rm_p, &match)
12156 && rm->info) {
12157 longest_pfx = rm;
12158 int type5_pfxlen =
12159 bgp_evpn_get_type5_prefixlen(
12160 rm_p);
12161 if (type5_pfxlen == match.prefixlen) {
12162 is_exact_pfxlen_match = true;
12163 bgp_dest_unlock_node(rm);
12164 break;
12165 }
12166 }
12167 }
12168
12169 if (!longest_pfx)
12170 continue;
12171
12172 if (prefix_check && !is_exact_pfxlen_match)
12173 continue;
12174
12175 rm = longest_pfx;
12176 bgp_dest_lock_node(rm);
12177
12178 bgp_show_path_info((struct prefix_rd *)dest_p, rm, vty,
12179 bgp, afi, safi, json, pathtype,
12180 &display, rpki_target_state);
12181
12182 bgp_dest_unlock_node(rm);
12183 }
12184 } else if (safi == SAFI_FLOWSPEC) {
12185 if (use_json)
12186 json_paths = json_object_new_array();
12187
12188 display = bgp_flowspec_display_match_per_ip(afi, rib,
12189 &match, prefix_check,
12190 vty,
12191 use_json,
12192 json_paths);
12193 if (use_json) {
12194 if (display)
12195 json_object_object_add(json, "paths",
12196 json_paths);
12197 else
12198 json_object_free(json_paths);
12199 }
12200 } else {
12201 dest = bgp_node_match(rib, &match);
12202 if (dest != NULL) {
12203 const struct prefix *dest_p = bgp_dest_get_prefix(dest);
12204 if (!prefix_check
12205 || dest_p->prefixlen == match.prefixlen) {
12206 bgp_show_path_info(NULL, dest, vty, bgp, afi,
12207 safi, json, pathtype,
12208 &display, rpki_target_state);
12209 }
12210
12211 bgp_dest_unlock_node(dest);
12212 }
12213 }
12214
12215 if (use_json) {
12216 vty_json(vty, json);
12217 } else {
12218 if (!display) {
12219 vty_out(vty, "%% Network not in table\n");
12220 return CMD_WARNING;
12221 }
12222 }
12223
12224 return CMD_SUCCESS;
12225 }
12226
12227 /* Display specified route of Main RIB */
12228 static int bgp_show_route(struct vty *vty, struct bgp *bgp, const char *ip_str,
12229 afi_t afi, safi_t safi, struct prefix_rd *prd,
12230 int prefix_check, enum bgp_path_type pathtype,
12231 enum rpki_states rpki_target_state, bool use_json)
12232 {
12233 if (!bgp) {
12234 bgp = bgp_get_default();
12235 if (!bgp) {
12236 if (!use_json)
12237 vty_out(vty, "No BGP process is configured\n");
12238 else
12239 vty_out(vty, "{}\n");
12240 return CMD_WARNING;
12241 }
12242 }
12243
12244 /* labeled-unicast routes live in the unicast table */
12245 if (safi == SAFI_LABELED_UNICAST)
12246 safi = SAFI_UNICAST;
12247
12248 return bgp_show_route_in_table(vty, bgp, bgp->rib[afi][safi], ip_str,
12249 afi, safi, rpki_target_state, prd,
12250 prefix_check, pathtype, use_json);
12251 }
12252
12253 static int bgp_show_lcommunity(struct vty *vty, struct bgp *bgp, int argc,
12254 struct cmd_token **argv, bool exact, afi_t afi,
12255 safi_t safi, bool uj)
12256 {
12257 struct lcommunity *lcom;
12258 struct buffer *b;
12259 int i;
12260 char *str;
12261 int first = 0;
12262 uint16_t show_flags = 0;
12263 int ret;
12264
12265 if (uj)
12266 SET_FLAG(show_flags, BGP_SHOW_OPT_JSON);
12267
12268 b = buffer_new(1024);
12269 for (i = 0; i < argc; i++) {
12270 if (first)
12271 buffer_putc(b, ' ');
12272 else {
12273 if (strmatch(argv[i]->text, "AA:BB:CC")) {
12274 first = 1;
12275 buffer_putstr(b, argv[i]->arg);
12276 }
12277 }
12278 }
12279 buffer_putc(b, '\0');
12280
12281 str = buffer_getstr(b);
12282 buffer_free(b);
12283
12284 lcom = lcommunity_str2com(str);
12285 XFREE(MTYPE_TMP, str);
12286 if (!lcom) {
12287 vty_out(vty, "%% Large-community malformed\n");
12288 return CMD_WARNING;
12289 }
12290
12291 ret = bgp_show(vty, bgp, afi, safi,
12292 (exact ? bgp_show_type_lcommunity_exact
12293 : bgp_show_type_lcommunity),
12294 lcom, show_flags, RPKI_NOT_BEING_USED);
12295
12296 lcommunity_free(&lcom);
12297 return ret;
12298 }
12299
12300 static int bgp_show_lcommunity_list(struct vty *vty, struct bgp *bgp,
12301 const char *lcom, bool exact, afi_t afi,
12302 safi_t safi, bool uj)
12303 {
12304 struct community_list *list;
12305 uint16_t show_flags = 0;
12306
12307 if (uj)
12308 SET_FLAG(show_flags, BGP_SHOW_OPT_JSON);
12309
12310
12311 list = community_list_lookup(bgp_clist, lcom, 0,
12312 LARGE_COMMUNITY_LIST_MASTER);
12313 if (list == NULL) {
12314 vty_out(vty, "%% %s is not a valid large-community-list name\n",
12315 lcom);
12316 return CMD_WARNING;
12317 }
12318
12319 return bgp_show(vty, bgp, afi, safi,
12320 (exact ? bgp_show_type_lcommunity_list_exact
12321 : bgp_show_type_lcommunity_list),
12322 list, show_flags, RPKI_NOT_BEING_USED);
12323 }
12324
12325 DEFUN (show_ip_bgp_large_community_list,
12326 show_ip_bgp_large_community_list_cmd,
12327 "show [ip] bgp [<view|vrf> VIEWVRFNAME] ["BGP_AFI_CMD_STR" ["BGP_SAFI_WITH_LABEL_CMD_STR"]] large-community-list <(1-500)|LCOMMUNITY_LIST_NAME> [exact-match] [json]",
12328 SHOW_STR
12329 IP_STR
12330 BGP_STR
12331 BGP_INSTANCE_HELP_STR
12332 BGP_AFI_HELP_STR
12333 BGP_SAFI_WITH_LABEL_HELP_STR
12334 "Display routes matching the large-community-list\n"
12335 "large-community-list number\n"
12336 "large-community-list name\n"
12337 "Exact match of the large-communities\n"
12338 JSON_STR)
12339 {
12340 afi_t afi = AFI_IP6;
12341 safi_t safi = SAFI_UNICAST;
12342 int idx = 0;
12343 bool exact_match = 0;
12344 struct bgp *bgp = NULL;
12345 bool uj = use_json(argc, argv);
12346
12347 if (uj)
12348 argc--;
12349
12350 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
12351 &bgp, uj);
12352 if (!idx)
12353 return CMD_WARNING;
12354
12355 argv_find(argv, argc, "large-community-list", &idx);
12356
12357 const char *clist_number_or_name = argv[++idx]->arg;
12358
12359 if (++idx < argc && strmatch(argv[idx]->text, "exact-match"))
12360 exact_match = 1;
12361
12362 return bgp_show_lcommunity_list(vty, bgp, clist_number_or_name,
12363 exact_match, afi, safi, uj);
12364 }
12365 DEFUN (show_ip_bgp_large_community,
12366 show_ip_bgp_large_community_cmd,
12367 "show [ip] bgp [<view|vrf> VIEWVRFNAME] ["BGP_AFI_CMD_STR" ["BGP_SAFI_WITH_LABEL_CMD_STR"]] large-community [<AA:BB:CC> [exact-match]] [json]",
12368 SHOW_STR
12369 IP_STR
12370 BGP_STR
12371 BGP_INSTANCE_HELP_STR
12372 BGP_AFI_HELP_STR
12373 BGP_SAFI_WITH_LABEL_HELP_STR
12374 "Display routes matching the large-communities\n"
12375 "List of large-community numbers\n"
12376 "Exact match of the large-communities\n"
12377 JSON_STR)
12378 {
12379 afi_t afi = AFI_IP6;
12380 safi_t safi = SAFI_UNICAST;
12381 int idx = 0;
12382 bool exact_match = 0;
12383 struct bgp *bgp = NULL;
12384 bool uj = use_json(argc, argv);
12385 uint16_t show_flags = 0;
12386
12387 if (uj) {
12388 argc--;
12389 SET_FLAG(show_flags, BGP_SHOW_OPT_JSON);
12390 }
12391
12392 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
12393 &bgp, uj);
12394 if (!idx)
12395 return CMD_WARNING;
12396
12397 if (argv_find(argv, argc, "AA:BB:CC", &idx)) {
12398 if (argv_find(argv, argc, "exact-match", &idx)) {
12399 argc--;
12400 exact_match = 1;
12401 }
12402 return bgp_show_lcommunity(vty, bgp, argc, argv,
12403 exact_match, afi, safi, uj);
12404 } else
12405 return bgp_show(vty, bgp, afi, safi,
12406 bgp_show_type_lcommunity_all, NULL, show_flags,
12407 RPKI_NOT_BEING_USED);
12408 }
12409
12410 static int bgp_table_stats_single(struct vty *vty, struct bgp *bgp, afi_t afi,
12411 safi_t safi, struct json_object *json_array);
12412 static int bgp_table_stats(struct vty *vty, struct bgp *bgp, afi_t afi,
12413 safi_t safi, struct json_object *json);
12414
12415
12416 DEFUN(show_ip_bgp_statistics_all, show_ip_bgp_statistics_all_cmd,
12417 "show [ip] bgp [<view|vrf> VIEWVRFNAME] statistics-all [json]",
12418 SHOW_STR IP_STR BGP_STR BGP_INSTANCE_HELP_STR
12419 "Display number of prefixes for all afi/safi\n" JSON_STR)
12420 {
12421 bool uj = use_json(argc, argv);
12422 struct bgp *bgp = NULL;
12423 safi_t safi = SAFI_UNICAST;
12424 afi_t afi = AFI_IP6;
12425 int idx = 0;
12426 struct json_object *json_all = NULL;
12427 struct json_object *json_afi_safi = NULL;
12428
12429 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
12430 &bgp, false);
12431 if (!idx)
12432 return CMD_WARNING;
12433
12434 if (uj)
12435 json_all = json_object_new_object();
12436
12437 FOREACH_AFI_SAFI (afi, safi) {
12438 /*
12439 * So limit output to those afi/safi pairs that
12440 * actually have something interesting in them
12441 */
12442 if (strmatch(get_afi_safi_str(afi, safi, true),
12443 "Unknown")) {
12444 continue;
12445 }
12446 if (uj) {
12447 json_afi_safi = json_object_new_array();
12448 json_object_object_add(
12449 json_all,
12450 get_afi_safi_str(afi, safi, true),
12451 json_afi_safi);
12452 } else {
12453 json_afi_safi = NULL;
12454 }
12455
12456 bgp_table_stats(vty, bgp, afi, safi, json_afi_safi);
12457 }
12458
12459 if (uj)
12460 vty_json(vty, json_all);
12461
12462 return CMD_SUCCESS;
12463 }
12464
12465 /* BGP route print out function without JSON */
12466 DEFUN (show_ip_bgp_l2vpn_evpn_statistics,
12467 show_ip_bgp_l2vpn_evpn_statistics_cmd,
12468 "show [ip] bgp [<view|vrf> VIEWVRFNAME] l2vpn evpn statistics [json]",
12469 SHOW_STR
12470 IP_STR
12471 BGP_STR
12472 BGP_INSTANCE_HELP_STR
12473 L2VPN_HELP_STR
12474 EVPN_HELP_STR
12475 "BGP RIB advertisement statistics\n"
12476 JSON_STR)
12477 {
12478 afi_t afi = AFI_IP6;
12479 safi_t safi = SAFI_UNICAST;
12480 struct bgp *bgp = NULL;
12481 int idx = 0, ret;
12482 bool uj = use_json(argc, argv);
12483 struct json_object *json_afi_safi = NULL, *json = NULL;
12484
12485 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
12486 &bgp, false);
12487 if (!idx)
12488 return CMD_WARNING;
12489
12490 if (uj)
12491 json_afi_safi = json_object_new_array();
12492 else
12493 json_afi_safi = NULL;
12494
12495 ret = bgp_table_stats(vty, bgp, afi, safi, json_afi_safi);
12496
12497 if (uj) {
12498 json = json_object_new_object();
12499 json_object_object_add(json, get_afi_safi_str(afi, safi, true),
12500 json_afi_safi);
12501 vty_json(vty, json);
12502 }
12503 return ret;
12504 }
12505
12506 /* BGP route print out function without JSON */
12507 DEFUN(show_ip_bgp_afi_safi_statistics, show_ip_bgp_afi_safi_statistics_cmd,
12508 "show [ip] bgp [<view|vrf> VIEWVRFNAME] [" BGP_AFI_CMD_STR
12509 " [" BGP_SAFI_WITH_LABEL_CMD_STR
12510 "]]\
12511 statistics [json]",
12512 SHOW_STR IP_STR BGP_STR BGP_INSTANCE_HELP_STR BGP_AFI_HELP_STR
12513 BGP_SAFI_WITH_LABEL_HELP_STR
12514 "BGP RIB advertisement statistics\n" JSON_STR)
12515 {
12516 afi_t afi = AFI_IP6;
12517 safi_t safi = SAFI_UNICAST;
12518 struct bgp *bgp = NULL;
12519 int idx = 0, ret;
12520 bool uj = use_json(argc, argv);
12521 struct json_object *json_afi_safi = NULL, *json = NULL;
12522
12523 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
12524 &bgp, false);
12525 if (!idx)
12526 return CMD_WARNING;
12527
12528 if (uj)
12529 json_afi_safi = json_object_new_array();
12530 else
12531 json_afi_safi = NULL;
12532
12533 ret = bgp_table_stats(vty, bgp, afi, safi, json_afi_safi);
12534
12535 if (uj) {
12536 json = json_object_new_object();
12537 json_object_object_add(json, get_afi_safi_str(afi, safi, true),
12538 json_afi_safi);
12539 vty_json(vty, json);
12540 }
12541 return ret;
12542 }
12543
12544 DEFPY(show_ip_bgp_dampening_params, show_ip_bgp_dampening_params_cmd,
12545 "show [ip] bgp [<view|vrf> VIEWVRFNAME] [" BGP_AFI_CMD_STR
12546 " [" BGP_SAFI_WITH_LABEL_CMD_STR
12547 "]] [all$all] dampening parameters [json]",
12548 SHOW_STR IP_STR BGP_STR BGP_INSTANCE_HELP_STR BGP_AFI_HELP_STR
12549 BGP_SAFI_WITH_LABEL_HELP_STR
12550 "Display the entries for all address families\n"
12551 "Display detailed information about dampening\n"
12552 "Display detail of configured dampening parameters\n"
12553 JSON_STR)
12554 {
12555 afi_t afi = AFI_IP6;
12556 safi_t safi = SAFI_UNICAST;
12557 struct bgp *bgp = NULL;
12558 int idx = 0;
12559 uint16_t show_flags = 0;
12560 bool uj = use_json(argc, argv);
12561
12562 if (uj) {
12563 argc--;
12564 SET_FLAG(show_flags, BGP_SHOW_OPT_JSON);
12565 }
12566
12567 /* [<ipv4|ipv6> [all]] */
12568 if (all) {
12569 SET_FLAG(show_flags, BGP_SHOW_OPT_AFI_ALL);
12570 if (argv_find(argv, argc, "ipv4", &idx))
12571 SET_FLAG(show_flags, BGP_SHOW_OPT_AFI_IP);
12572
12573 if (argv_find(argv, argc, "ipv6", &idx))
12574 SET_FLAG(show_flags, BGP_SHOW_OPT_AFI_IP6);
12575 }
12576
12577 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
12578 &bgp, false);
12579 if (!idx)
12580 return CMD_WARNING;
12581
12582 return bgp_show_dampening_parameters(vty, afi, safi, show_flags);
12583 }
12584
12585 /* BGP route print out function */
12586 DEFPY(show_ip_bgp, show_ip_bgp_cmd,
12587 "show [ip] bgp [<view|vrf> VIEWVRFNAME] [" BGP_AFI_CMD_STR
12588 " [" BGP_SAFI_WITH_LABEL_CMD_STR
12589 "]]\
12590 [all$all]\
12591 [cidr-only\
12592 |dampening <flap-statistics|dampened-paths>\
12593 |community [AA:NN|local-AS|no-advertise|no-export\
12594 |graceful-shutdown|no-peer|blackhole|llgr-stale|no-llgr\
12595 |accept-own|accept-own-nexthop|route-filter-v6\
12596 |route-filter-v4|route-filter-translated-v6\
12597 |route-filter-translated-v4] [exact-match]\
12598 |community-list <(1-500)|COMMUNITY_LIST_NAME> [exact-match]\
12599 |filter-list AS_PATH_FILTER_NAME\
12600 |prefix-list WORD\
12601 |access-list ACCESSLIST_NAME\
12602 |route-map RMAP_NAME\
12603 |rpki <invalid|valid|notfound>\
12604 |version (1-4294967295)\
12605 |alias ALIAS_NAME\
12606 |A.B.C.D/M longer-prefixes\
12607 |X:X::X:X/M longer-prefixes\
12608 |detail-routes$detail_routes\
12609 ] [json$uj [detail$detail_json] | wide$wide]",
12610 SHOW_STR IP_STR BGP_STR BGP_INSTANCE_HELP_STR BGP_AFI_HELP_STR
12611 BGP_SAFI_WITH_LABEL_HELP_STR
12612 "Display the entries for all address families\n"
12613 "Display only routes with non-natural netmasks\n"
12614 "Display detailed information about dampening\n"
12615 "Display flap statistics of routes\n"
12616 "Display paths suppressed due to dampening\n"
12617 "Display routes matching the communities\n" COMMUNITY_AANN_STR
12618 "Do not send outside local AS (well-known community)\n"
12619 "Do not advertise to any peer (well-known community)\n"
12620 "Do not export to next AS (well-known community)\n"
12621 "Graceful shutdown (well-known community)\n"
12622 "Do not export to any peer (well-known community)\n"
12623 "Inform EBGP peers to blackhole traffic to prefix (well-known community)\n"
12624 "Staled Long-lived Graceful Restart VPN route (well-known community)\n"
12625 "Removed because Long-lived Graceful Restart was not enabled for VPN route (well-known community)\n"
12626 "Should accept local VPN route if exported and imported into different VRF (well-known community)\n"
12627 "Should accept VPN route with local nexthop (well-known community)\n"
12628 "RT VPNv6 route filtering (well-known community)\n"
12629 "RT VPNv4 route filtering (well-known community)\n"
12630 "RT translated VPNv6 route filtering (well-known community)\n"
12631 "RT translated VPNv4 route filtering (well-known community)\n"
12632 "Exact match of the communities\n"
12633 "Community-list number\n"
12634 "Community-list name\n"
12635 "Display routes matching the community-list\n"
12636 "Exact match of the communities\n"
12637 "Display routes conforming to the filter-list\n"
12638 "Regular expression access list name\n"
12639 "Display routes conforming to the prefix-list\n"
12640 "Prefix-list name\n"
12641 "Display routes conforming to the access-list\n"
12642 "Access-list name\n"
12643 "Display routes matching the route-map\n"
12644 "A route-map to match on\n"
12645 "RPKI route types\n"
12646 "A valid path as determined by rpki\n"
12647 "A invalid path as determined by rpki\n"
12648 "A path that has no rpki data\n"
12649 "Display prefixes with matching version numbers\n"
12650 "Version number and above\n"
12651 "Display prefixes with matching BGP community alias\n"
12652 "BGP community alias\n"
12653 "IPv4 prefix\n"
12654 "Display route and more specific routes\n"
12655 "IPv6 prefix\n"
12656 "Display route and more specific routes\n"
12657 "Display detailed version of all routes\n"
12658 JSON_STR
12659 "Display detailed version of JSON output\n"
12660 "Increase table width for longer prefixes\n")
12661 {
12662 afi_t afi = AFI_IP6;
12663 safi_t safi = SAFI_UNICAST;
12664 enum bgp_show_type sh_type = bgp_show_type_normal;
12665 void *output_arg = NULL;
12666 struct bgp *bgp = NULL;
12667 int idx = 0;
12668 int exact_match = 0;
12669 char *community = NULL;
12670 bool first = true;
12671 uint16_t show_flags = 0;
12672 enum rpki_states rpki_target_state = RPKI_NOT_BEING_USED;
12673 struct prefix p;
12674
12675 if (uj) {
12676 argc--;
12677 SET_FLAG(show_flags, BGP_SHOW_OPT_JSON);
12678 }
12679
12680 if (detail_json)
12681 SET_FLAG(show_flags, BGP_SHOW_OPT_JSON_DETAIL);
12682
12683 if (detail_routes)
12684 SET_FLAG(show_flags, BGP_SHOW_OPT_ROUTES_DETAIL);
12685
12686 /* [<ipv4|ipv6> [all]] */
12687 if (all) {
12688 SET_FLAG(show_flags, BGP_SHOW_OPT_AFI_ALL);
12689
12690 if (argv_find(argv, argc, "ipv4", &idx))
12691 SET_FLAG(show_flags, BGP_SHOW_OPT_AFI_IP);
12692
12693 if (argv_find(argv, argc, "ipv6", &idx))
12694 SET_FLAG(show_flags, BGP_SHOW_OPT_AFI_IP6);
12695 }
12696
12697 if (wide)
12698 SET_FLAG(show_flags, BGP_SHOW_OPT_WIDE);
12699
12700 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
12701 &bgp, uj);
12702 if (!idx)
12703 return CMD_WARNING;
12704
12705 if (argv_find(argv, argc, "cidr-only", &idx))
12706 sh_type = bgp_show_type_cidr_only;
12707
12708 if (argv_find(argv, argc, "dampening", &idx)) {
12709 if (argv_find(argv, argc, "dampened-paths", &idx))
12710 sh_type = bgp_show_type_dampend_paths;
12711 else if (argv_find(argv, argc, "flap-statistics", &idx))
12712 sh_type = bgp_show_type_flap_statistics;
12713 }
12714
12715 if (argv_find(argv, argc, "community", &idx)) {
12716 char *maybecomm = NULL;
12717
12718 if (idx + 1 < argc) {
12719 if (argv[idx + 1]->type == VARIABLE_TKN)
12720 maybecomm = argv[idx + 1]->arg;
12721 else
12722 maybecomm = argv[idx + 1]->text;
12723 }
12724
12725 if (maybecomm && !strmatch(maybecomm, "json")
12726 && !strmatch(maybecomm, "exact-match"))
12727 community = maybecomm;
12728
12729 if (argv_find(argv, argc, "exact-match", &idx))
12730 exact_match = 1;
12731
12732 if (!community)
12733 sh_type = bgp_show_type_community_all;
12734 }
12735
12736 if (argv_find(argv, argc, "community-list", &idx)) {
12737 const char *clist_number_or_name = argv[++idx]->arg;
12738 struct community_list *list;
12739
12740 if (argv_find(argv, argc, "exact-match", &idx))
12741 exact_match = 1;
12742
12743 list = community_list_lookup(bgp_clist, clist_number_or_name, 0,
12744 COMMUNITY_LIST_MASTER);
12745 if (list == NULL) {
12746 vty_out(vty, "%% %s community-list not found\n",
12747 clist_number_or_name);
12748 return CMD_WARNING;
12749 }
12750
12751 if (exact_match)
12752 sh_type = bgp_show_type_community_list_exact;
12753 else
12754 sh_type = bgp_show_type_community_list;
12755 output_arg = list;
12756 }
12757
12758 if (argv_find(argv, argc, "filter-list", &idx)) {
12759 const char *filter = argv[++idx]->arg;
12760 struct as_list *as_list;
12761
12762 as_list = as_list_lookup(filter);
12763 if (as_list == NULL) {
12764 vty_out(vty, "%% %s AS-path access-list not found\n",
12765 filter);
12766 return CMD_WARNING;
12767 }
12768
12769 sh_type = bgp_show_type_filter_list;
12770 output_arg = as_list;
12771 }
12772
12773 if (argv_find(argv, argc, "prefix-list", &idx)) {
12774 const char *prefix_list_str = argv[++idx]->arg;
12775 struct prefix_list *plist;
12776
12777 plist = prefix_list_lookup(afi, prefix_list_str);
12778 if (plist == NULL) {
12779 vty_out(vty, "%% %s prefix-list not found\n",
12780 prefix_list_str);
12781 return CMD_WARNING;
12782 }
12783
12784 sh_type = bgp_show_type_prefix_list;
12785 output_arg = plist;
12786 }
12787
12788 if (argv_find(argv, argc, "access-list", &idx)) {
12789 const char *access_list_str = argv[++idx]->arg;
12790 struct access_list *alist;
12791
12792 alist = access_list_lookup(afi, access_list_str);
12793 if (!alist) {
12794 vty_out(vty, "%% %s access-list not found\n",
12795 access_list_str);
12796 return CMD_WARNING;
12797 }
12798
12799 sh_type = bgp_show_type_access_list;
12800 output_arg = alist;
12801 }
12802
12803 if (argv_find(argv, argc, "route-map", &idx)) {
12804 const char *rmap_str = argv[++idx]->arg;
12805 struct route_map *rmap;
12806
12807 rmap = route_map_lookup_by_name(rmap_str);
12808 if (!rmap) {
12809 vty_out(vty, "%% %s route-map not found\n", rmap_str);
12810 return CMD_WARNING;
12811 }
12812
12813 sh_type = bgp_show_type_route_map;
12814 output_arg = rmap;
12815 }
12816
12817 if (argv_find(argv, argc, "rpki", &idx)) {
12818 sh_type = bgp_show_type_rpki;
12819 if (argv_find(argv, argc, "valid", &idx))
12820 rpki_target_state = RPKI_VALID;
12821 else if (argv_find(argv, argc, "invalid", &idx))
12822 rpki_target_state = RPKI_INVALID;
12823 }
12824
12825 /* Display prefixes with matching version numbers */
12826 if (argv_find(argv, argc, "version", &idx)) {
12827 sh_type = bgp_show_type_prefix_version;
12828 output_arg = argv[idx + 1]->arg;
12829 }
12830
12831 /* Display prefixes with matching BGP community alias */
12832 if (argv_find(argv, argc, "alias", &idx)) {
12833 sh_type = bgp_show_type_community_alias;
12834 output_arg = argv[idx + 1]->arg;
12835 }
12836
12837 /* prefix-longer */
12838 if (argv_find(argv, argc, "A.B.C.D/M", &idx)
12839 || argv_find(argv, argc, "X:X::X:X/M", &idx)) {
12840 const char *prefix_str = argv[idx]->arg;
12841
12842 if (!str2prefix(prefix_str, &p)) {
12843 vty_out(vty, "%% Malformed Prefix\n");
12844 return CMD_WARNING;
12845 }
12846
12847 sh_type = bgp_show_type_prefix_longer;
12848 output_arg = &p;
12849 }
12850
12851 if (!all) {
12852 /* show bgp: AFI_IP6, show ip bgp: AFI_IP */
12853 if (community)
12854 return bgp_show_community(vty, bgp, community,
12855 exact_match, afi, safi,
12856 show_flags);
12857 else
12858 return bgp_show(vty, bgp, afi, safi, sh_type,
12859 output_arg, show_flags,
12860 rpki_target_state);
12861 } else {
12862 struct listnode *node;
12863 struct bgp *abgp;
12864 /* show <ip> bgp ipv4 all: AFI_IP, show <ip> bgp ipv6 all:
12865 * AFI_IP6 */
12866
12867 if (uj)
12868 vty_out(vty, "{\n");
12869
12870 if (CHECK_FLAG(show_flags, BGP_SHOW_OPT_AFI_IP)
12871 || CHECK_FLAG(show_flags, BGP_SHOW_OPT_AFI_IP6)) {
12872 afi = CHECK_FLAG(show_flags, BGP_SHOW_OPT_AFI_IP)
12873 ? AFI_IP
12874 : AFI_IP6;
12875 for (ALL_LIST_ELEMENTS_RO(bm->bgp, node, abgp)) {
12876 FOREACH_SAFI (safi) {
12877 if (!bgp_afi_safi_peer_exists(abgp, afi,
12878 safi))
12879 continue;
12880
12881 if (uj) {
12882 if (first)
12883 first = false;
12884 else
12885 vty_out(vty, ",\n");
12886 vty_out(vty, "\"%s\":{\n",
12887 get_afi_safi_str(afi,
12888 safi,
12889 true));
12890 } else
12891 vty_out(vty,
12892 "\nFor address family: %s\n",
12893 get_afi_safi_str(
12894 afi, safi,
12895 false));
12896
12897 if (community)
12898 bgp_show_community(
12899 vty, abgp, community,
12900 exact_match, afi, safi,
12901 show_flags);
12902 else
12903 bgp_show(vty, abgp, afi, safi,
12904 sh_type, output_arg,
12905 show_flags,
12906 rpki_target_state);
12907 if (uj)
12908 vty_out(vty, "}\n");
12909 }
12910 }
12911 } else {
12912 /* show <ip> bgp all: for each AFI and SAFI*/
12913 for (ALL_LIST_ELEMENTS_RO(bm->bgp, node, abgp)) {
12914 FOREACH_AFI_SAFI (afi, safi) {
12915 if (!bgp_afi_safi_peer_exists(abgp, afi,
12916 safi))
12917 continue;
12918
12919 if (uj) {
12920 if (first)
12921 first = false;
12922 else
12923 vty_out(vty, ",\n");
12924
12925 vty_out(vty, "\"%s\":{\n",
12926 get_afi_safi_str(afi,
12927 safi,
12928 true));
12929 } else
12930 vty_out(vty,
12931 "\nFor address family: %s\n",
12932 get_afi_safi_str(
12933 afi, safi,
12934 false));
12935
12936 if (community)
12937 bgp_show_community(
12938 vty, abgp, community,
12939 exact_match, afi, safi,
12940 show_flags);
12941 else
12942 bgp_show(vty, abgp, afi, safi,
12943 sh_type, output_arg,
12944 show_flags,
12945 rpki_target_state);
12946 if (uj)
12947 vty_out(vty, "}\n");
12948 }
12949 }
12950 }
12951 if (uj)
12952 vty_out(vty, "}\n");
12953 }
12954 return CMD_SUCCESS;
12955 }
12956
12957 DEFUN (show_ip_bgp_route,
12958 show_ip_bgp_route_cmd,
12959 "show [ip] bgp [<view|vrf> VIEWVRFNAME] ["BGP_AFI_CMD_STR" ["BGP_SAFI_WITH_LABEL_CMD_STR"]]<A.B.C.D|A.B.C.D/M|X:X::X:X|X:X::X:X/M> [<bestpath|multipath>] [rpki <valid|invalid|notfound>] [json]",
12960 SHOW_STR
12961 IP_STR
12962 BGP_STR
12963 BGP_INSTANCE_HELP_STR
12964 BGP_AFI_HELP_STR
12965 BGP_SAFI_WITH_LABEL_HELP_STR
12966 "Network in the BGP routing table to display\n"
12967 "IPv4 prefix\n"
12968 "Network in the BGP routing table to display\n"
12969 "IPv6 prefix\n"
12970 "Display only the bestpath\n"
12971 "Display only multipaths\n"
12972 "Display only paths that match the specified rpki state\n"
12973 "A valid path as determined by rpki\n"
12974 "A invalid path as determined by rpki\n"
12975 "A path that has no rpki data\n"
12976 JSON_STR)
12977 {
12978 int prefix_check = 0;
12979
12980 afi_t afi = AFI_IP6;
12981 safi_t safi = SAFI_UNICAST;
12982 char *prefix = NULL;
12983 struct bgp *bgp = NULL;
12984 enum bgp_path_type path_type;
12985 bool uj = use_json(argc, argv);
12986
12987 int idx = 0;
12988
12989 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
12990 &bgp, uj);
12991 if (!idx)
12992 return CMD_WARNING;
12993
12994 if (!bgp) {
12995 vty_out(vty,
12996 "Specified 'all' vrf's but this command currently only works per view/vrf\n");
12997 return CMD_WARNING;
12998 }
12999
13000 /* <A.B.C.D|A.B.C.D/M|X:X::X:X|X:X::X:X/M> */
13001 if (argv_find(argv, argc, "A.B.C.D", &idx)
13002 || argv_find(argv, argc, "X:X::X:X", &idx))
13003 prefix_check = 0;
13004 else if (argv_find(argv, argc, "A.B.C.D/M", &idx)
13005 || argv_find(argv, argc, "X:X::X:X/M", &idx))
13006 prefix_check = 1;
13007
13008 if ((argv[idx]->type == IPV6_TKN || argv[idx]->type == IPV6_PREFIX_TKN)
13009 && afi != AFI_IP6) {
13010 vty_out(vty,
13011 "%% Cannot specify IPv6 address or prefix with IPv4 AFI\n");
13012 return CMD_WARNING;
13013 }
13014 if ((argv[idx]->type == IPV4_TKN || argv[idx]->type == IPV4_PREFIX_TKN)
13015 && afi != AFI_IP) {
13016 vty_out(vty,
13017 "%% Cannot specify IPv4 address or prefix with IPv6 AFI\n");
13018 return CMD_WARNING;
13019 }
13020
13021 prefix = argv[idx]->arg;
13022
13023 /* [<bestpath|multipath>] */
13024 if (argv_find(argv, argc, "bestpath", &idx))
13025 path_type = BGP_PATH_SHOW_BESTPATH;
13026 else if (argv_find(argv, argc, "multipath", &idx))
13027 path_type = BGP_PATH_SHOW_MULTIPATH;
13028 else
13029 path_type = BGP_PATH_SHOW_ALL;
13030
13031 return bgp_show_route(vty, bgp, prefix, afi, safi, NULL, prefix_check,
13032 path_type, RPKI_NOT_BEING_USED, uj);
13033 }
13034
13035 DEFUN (show_ip_bgp_regexp,
13036 show_ip_bgp_regexp_cmd,
13037 "show [ip] bgp [<view|vrf> VIEWVRFNAME] ["BGP_AFI_CMD_STR" ["BGP_SAFI_WITH_LABEL_CMD_STR"]] regexp REGEX [json]",
13038 SHOW_STR
13039 IP_STR
13040 BGP_STR
13041 BGP_INSTANCE_HELP_STR
13042 BGP_AFI_HELP_STR
13043 BGP_SAFI_WITH_LABEL_HELP_STR
13044 "Display routes matching the AS path regular expression\n"
13045 "A regular-expression (1234567890_^|[,{}() ]$*+.?-\\) to match the BGP AS paths\n"
13046 JSON_STR)
13047 {
13048 afi_t afi = AFI_IP6;
13049 safi_t safi = SAFI_UNICAST;
13050 struct bgp *bgp = NULL;
13051 bool uj = use_json(argc, argv);
13052 char *regstr = NULL;
13053
13054 int idx = 0;
13055 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
13056 &bgp, false);
13057 if (!idx)
13058 return CMD_WARNING;
13059
13060 // get index of regex
13061 if (argv_find(argv, argc, "REGEX", &idx))
13062 regstr = argv[idx]->arg;
13063
13064 assert(regstr);
13065 return bgp_show_regexp(vty, bgp, (const char *)regstr, afi, safi,
13066 bgp_show_type_regexp, uj);
13067 }
13068
13069 DEFPY (show_ip_bgp_instance_all,
13070 show_ip_bgp_instance_all_cmd,
13071 "show [ip] bgp <view|vrf> all ["BGP_AFI_CMD_STR" ["BGP_SAFI_WITH_LABEL_CMD_STR"]] [json$uj | wide$wide]",
13072 SHOW_STR
13073 IP_STR
13074 BGP_STR
13075 BGP_INSTANCE_ALL_HELP_STR
13076 BGP_AFI_HELP_STR
13077 BGP_SAFI_WITH_LABEL_HELP_STR
13078 JSON_STR
13079 "Increase table width for longer prefixes\n")
13080 {
13081 afi_t afi = AFI_IP6;
13082 safi_t safi = SAFI_UNICAST;
13083 struct bgp *bgp = NULL;
13084 int idx = 0;
13085 uint16_t show_flags = 0;
13086
13087 if (uj) {
13088 argc--;
13089 SET_FLAG(show_flags, BGP_SHOW_OPT_JSON);
13090 }
13091
13092 if (wide)
13093 SET_FLAG(show_flags, BGP_SHOW_OPT_WIDE);
13094
13095 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
13096 &bgp, uj);
13097 if (!idx)
13098 return CMD_WARNING;
13099
13100 bgp_show_all_instances_routes_vty(vty, afi, safi, show_flags);
13101 return CMD_SUCCESS;
13102 }
13103
13104 static int bgp_show_regexp(struct vty *vty, struct bgp *bgp, const char *regstr,
13105 afi_t afi, safi_t safi, enum bgp_show_type type,
13106 bool use_json)
13107 {
13108 regex_t *regex;
13109 int rc;
13110 uint16_t show_flags = 0;
13111
13112 if (use_json)
13113 SET_FLAG(show_flags, BGP_SHOW_OPT_JSON);
13114
13115 if (!config_bgp_aspath_validate(regstr)) {
13116 vty_out(vty, "Invalid character in REGEX %s\n",
13117 regstr);
13118 return CMD_WARNING_CONFIG_FAILED;
13119 }
13120
13121 regex = bgp_regcomp(regstr);
13122 if (!regex) {
13123 vty_out(vty, "Can't compile regexp %s\n", regstr);
13124 return CMD_WARNING;
13125 }
13126
13127 rc = bgp_show(vty, bgp, afi, safi, type, regex, show_flags,
13128 RPKI_NOT_BEING_USED);
13129 bgp_regex_free(regex);
13130 return rc;
13131 }
13132
13133 static int bgp_show_community(struct vty *vty, struct bgp *bgp,
13134 const char *comstr, int exact, afi_t afi,
13135 safi_t safi, uint16_t show_flags)
13136 {
13137 struct community *com;
13138 int ret = 0;
13139
13140 com = community_str2com(comstr);
13141 if (!com) {
13142 vty_out(vty, "%% Community malformed: %s\n", comstr);
13143 return CMD_WARNING;
13144 }
13145
13146 ret = bgp_show(vty, bgp, afi, safi,
13147 (exact ? bgp_show_type_community_exact
13148 : bgp_show_type_community),
13149 com, show_flags, RPKI_NOT_BEING_USED);
13150 community_free(&com);
13151
13152 return ret;
13153 }
13154
13155 enum bgp_stats {
13156 BGP_STATS_MAXBITLEN = 0,
13157 BGP_STATS_RIB,
13158 BGP_STATS_PREFIXES,
13159 BGP_STATS_TOTPLEN,
13160 BGP_STATS_UNAGGREGATEABLE,
13161 BGP_STATS_MAX_AGGREGATEABLE,
13162 BGP_STATS_AGGREGATES,
13163 BGP_STATS_SPACE,
13164 BGP_STATS_ASPATH_COUNT,
13165 BGP_STATS_ASPATH_MAXHOPS,
13166 BGP_STATS_ASPATH_TOTHOPS,
13167 BGP_STATS_ASPATH_MAXSIZE,
13168 BGP_STATS_ASPATH_TOTSIZE,
13169 BGP_STATS_ASN_HIGHEST,
13170 BGP_STATS_MAX,
13171 };
13172
13173 #define TABLE_STATS_IDX_VTY 0
13174 #define TABLE_STATS_IDX_JSON 1
13175
13176 static const char *table_stats_strs[][2] = {
13177 [BGP_STATS_PREFIXES] = {"Total Prefixes", "totalPrefixes"},
13178 [BGP_STATS_TOTPLEN] = {"Average prefix length", "averagePrefixLength"},
13179 [BGP_STATS_RIB] = {"Total Advertisements", "totalAdvertisements"},
13180 [BGP_STATS_UNAGGREGATEABLE] = {"Unaggregateable prefixes",
13181 "unaggregateablePrefixes"},
13182 [BGP_STATS_MAX_AGGREGATEABLE] = {"Maximum aggregateable prefixes",
13183 "maximumAggregateablePrefixes"},
13184 [BGP_STATS_AGGREGATES] = {"BGP Aggregate advertisements",
13185 "bgpAggregateAdvertisements"},
13186 [BGP_STATS_SPACE] = {"Address space advertised",
13187 "addressSpaceAdvertised"},
13188 [BGP_STATS_ASPATH_COUNT] = {"Advertisements with paths",
13189 "advertisementsWithPaths"},
13190 [BGP_STATS_ASPATH_MAXHOPS] = {"Longest AS-Path (hops)",
13191 "longestAsPath"},
13192 [BGP_STATS_ASPATH_MAXSIZE] = {"Largest AS-Path (bytes)",
13193 "largestAsPath"},
13194 [BGP_STATS_ASPATH_TOTHOPS] = {"Average AS-Path length (hops)",
13195 "averageAsPathLengthHops"},
13196 [BGP_STATS_ASPATH_TOTSIZE] = {"Average AS-Path size (bytes)",
13197 "averageAsPathSizeBytes"},
13198 [BGP_STATS_ASN_HIGHEST] = {"Highest public ASN", "highestPublicAsn"},
13199 [BGP_STATS_MAX] = {NULL, NULL}
13200 };
13201
13202 struct bgp_table_stats {
13203 struct bgp_table *table;
13204 unsigned long long counts[BGP_STATS_MAX];
13205
13206 unsigned long long
13207 prefix_len_count[MAX(EVPN_ROUTE_PREFIXLEN, IPV6_MAX_BITLEN) +
13208 1];
13209
13210 double total_space;
13211 };
13212
13213 static void bgp_table_stats_rn(struct bgp_dest *dest, struct bgp_dest *top,
13214 struct bgp_table_stats *ts, unsigned int space)
13215 {
13216 struct bgp_dest *pdest = bgp_dest_parent_nolock(dest);
13217 struct bgp_path_info *pi;
13218 const struct prefix *rn_p;
13219
13220 if (!bgp_dest_has_bgp_path_info_data(dest))
13221 return;
13222
13223 rn_p = bgp_dest_get_prefix(dest);
13224 ts->counts[BGP_STATS_PREFIXES]++;
13225 ts->counts[BGP_STATS_TOTPLEN] += rn_p->prefixlen;
13226
13227 ts->prefix_len_count[rn_p->prefixlen]++;
13228 /* check if the prefix is included by any other announcements */
13229 while (pdest && !bgp_dest_has_bgp_path_info_data(pdest))
13230 pdest = bgp_dest_parent_nolock(pdest);
13231
13232 if (pdest == NULL || pdest == top) {
13233 ts->counts[BGP_STATS_UNAGGREGATEABLE]++;
13234 /* announced address space */
13235 if (space)
13236 ts->total_space += pow(2.0, space - rn_p->prefixlen);
13237 } else if (bgp_dest_has_bgp_path_info_data(pdest))
13238 ts->counts[BGP_STATS_MAX_AGGREGATEABLE]++;
13239
13240
13241 for (pi = bgp_dest_get_bgp_path_info(dest); pi; pi = pi->next) {
13242 ts->counts[BGP_STATS_RIB]++;
13243
13244 if (CHECK_FLAG(pi->attr->flag,
13245 ATTR_FLAG_BIT(BGP_ATTR_ATOMIC_AGGREGATE)))
13246 ts->counts[BGP_STATS_AGGREGATES]++;
13247
13248 /* as-path stats */
13249 if (pi->attr->aspath) {
13250 unsigned int hops = aspath_count_hops(pi->attr->aspath);
13251 unsigned int size = aspath_size(pi->attr->aspath);
13252 as_t highest = aspath_highest(pi->attr->aspath);
13253
13254 ts->counts[BGP_STATS_ASPATH_COUNT]++;
13255
13256 if (hops > ts->counts[BGP_STATS_ASPATH_MAXHOPS])
13257 ts->counts[BGP_STATS_ASPATH_MAXHOPS] = hops;
13258
13259 if (size > ts->counts[BGP_STATS_ASPATH_MAXSIZE])
13260 ts->counts[BGP_STATS_ASPATH_MAXSIZE] = size;
13261
13262 ts->counts[BGP_STATS_ASPATH_TOTHOPS] += hops;
13263 ts->counts[BGP_STATS_ASPATH_TOTSIZE] += size;
13264 if (highest > ts->counts[BGP_STATS_ASN_HIGHEST])
13265 ts->counts[BGP_STATS_ASN_HIGHEST] = highest;
13266 }
13267 }
13268 }
13269
13270 static void bgp_table_stats_walker(struct thread *t)
13271 {
13272 struct bgp_dest *dest, *ndest;
13273 struct bgp_dest *top;
13274 struct bgp_table_stats *ts = THREAD_ARG(t);
13275 unsigned int space = 0;
13276
13277 if (!(top = bgp_table_top(ts->table)))
13278 return;
13279
13280 switch (ts->table->afi) {
13281 case AFI_IP:
13282 space = IPV4_MAX_BITLEN;
13283 break;
13284 case AFI_IP6:
13285 space = IPV6_MAX_BITLEN;
13286 break;
13287 case AFI_L2VPN:
13288 space = EVPN_ROUTE_PREFIXLEN;
13289 break;
13290 default:
13291 return;
13292 }
13293
13294 ts->counts[BGP_STATS_MAXBITLEN] = space;
13295
13296 for (dest = top; dest; dest = bgp_route_next(dest)) {
13297 if (ts->table->safi == SAFI_MPLS_VPN
13298 || ts->table->safi == SAFI_ENCAP
13299 || ts->table->safi == SAFI_EVPN) {
13300 struct bgp_table *table;
13301
13302 table = bgp_dest_get_bgp_table_info(dest);
13303 if (!table)
13304 continue;
13305
13306 top = bgp_table_top(table);
13307 for (ndest = bgp_table_top(table); ndest;
13308 ndest = bgp_route_next(ndest))
13309 bgp_table_stats_rn(ndest, top, ts, space);
13310 } else {
13311 bgp_table_stats_rn(dest, top, ts, space);
13312 }
13313 }
13314 }
13315
13316 static void bgp_table_stats_all(struct vty *vty, afi_t afi, safi_t safi,
13317 struct json_object *json_array)
13318 {
13319 struct listnode *node, *nnode;
13320 struct bgp *bgp;
13321
13322 for (ALL_LIST_ELEMENTS(bm->bgp, node, nnode, bgp))
13323 bgp_table_stats_single(vty, bgp, afi, safi, json_array);
13324 }
13325
13326 static int bgp_table_stats_single(struct vty *vty, struct bgp *bgp, afi_t afi,
13327 safi_t safi, struct json_object *json_array)
13328 {
13329 struct bgp_table_stats ts;
13330 unsigned int i;
13331 int ret = CMD_SUCCESS;
13332 char temp_buf[20];
13333 struct json_object *json = NULL;
13334 uint32_t bitlen = 0;
13335 struct json_object *json_bitlen;
13336
13337 if (json_array)
13338 json = json_object_new_object();
13339
13340 if (!bgp->rib[afi][safi]) {
13341 char warning_msg[50];
13342
13343 snprintf(warning_msg, sizeof(warning_msg),
13344 "%% No RIB exist's for the AFI(%d)/SAFI(%d)", afi,
13345 safi);
13346
13347 if (!json)
13348 vty_out(vty, "%s\n", warning_msg);
13349 else
13350 json_object_string_add(json, "warning", warning_msg);
13351
13352 ret = CMD_WARNING;
13353 goto end_table_stats;
13354 }
13355
13356 if (!json)
13357 vty_out(vty, "BGP %s RIB statistics (%s)\n",
13358 get_afi_safi_str(afi, safi, false), bgp->name_pretty);
13359 else
13360 json_object_string_add(json, "instance", bgp->name_pretty);
13361
13362 /* labeled-unicast routes live in the unicast table */
13363 if (safi == SAFI_LABELED_UNICAST)
13364 safi = SAFI_UNICAST;
13365
13366 memset(&ts, 0, sizeof(ts));
13367 ts.table = bgp->rib[afi][safi];
13368 thread_execute(bm->master, bgp_table_stats_walker, &ts, 0);
13369
13370 for (i = 0; i < BGP_STATS_MAX; i++) {
13371 if ((!json && !table_stats_strs[i][TABLE_STATS_IDX_VTY])
13372 || (json && !table_stats_strs[i][TABLE_STATS_IDX_JSON]))
13373 continue;
13374
13375 switch (i) {
13376 case BGP_STATS_ASPATH_TOTHOPS:
13377 case BGP_STATS_ASPATH_TOTSIZE:
13378 if (!json) {
13379 snprintf(
13380 temp_buf, sizeof(temp_buf), "%12.2f",
13381 ts.counts[i]
13382 ? (float)ts.counts[i]
13383 / (float)ts.counts
13384 [BGP_STATS_ASPATH_COUNT]
13385 : 0);
13386 vty_out(vty, "%-30s: %s",
13387 table_stats_strs[i]
13388 [TABLE_STATS_IDX_VTY],
13389 temp_buf);
13390 } else {
13391 json_object_double_add(
13392 json,
13393 table_stats_strs[i]
13394 [TABLE_STATS_IDX_JSON],
13395 ts.counts[i]
13396 ? (double)ts.counts[i]
13397 / (double)ts.counts
13398 [BGP_STATS_ASPATH_COUNT]
13399 : 0);
13400 }
13401 break;
13402 case BGP_STATS_TOTPLEN:
13403 if (!json) {
13404 snprintf(
13405 temp_buf, sizeof(temp_buf), "%12.2f",
13406 ts.counts[i]
13407 ? (float)ts.counts[i]
13408 / (float)ts.counts
13409 [BGP_STATS_PREFIXES]
13410 : 0);
13411 vty_out(vty, "%-30s: %s",
13412 table_stats_strs[i]
13413 [TABLE_STATS_IDX_VTY],
13414 temp_buf);
13415 } else {
13416 json_object_double_add(
13417 json,
13418 table_stats_strs[i]
13419 [TABLE_STATS_IDX_JSON],
13420 ts.counts[i]
13421 ? (double)ts.counts[i]
13422 / (double)ts.counts
13423 [BGP_STATS_PREFIXES]
13424 : 0);
13425 }
13426 break;
13427 case BGP_STATS_SPACE:
13428 if (!json) {
13429 snprintf(temp_buf, sizeof(temp_buf), "%12g",
13430 ts.total_space);
13431 vty_out(vty, "%-30s: %s\n",
13432 table_stats_strs[i]
13433 [TABLE_STATS_IDX_VTY],
13434 temp_buf);
13435 } else {
13436 json_object_double_add(
13437 json,
13438 table_stats_strs[i]
13439 [TABLE_STATS_IDX_JSON],
13440 (double)ts.total_space);
13441 }
13442 if (afi == AFI_IP6) {
13443 if (!json) {
13444 snprintf(temp_buf, sizeof(temp_buf),
13445 "%12g",
13446 ts.total_space
13447 * pow(2.0, -128 + 32));
13448 vty_out(vty, "%30s: %s\n",
13449 "/32 equivalent %s\n",
13450 temp_buf);
13451 } else {
13452 json_object_double_add(
13453 json, "/32equivalent",
13454 (double)(ts.total_space
13455 * pow(2.0,
13456 -128 + 32)));
13457 }
13458 if (!json) {
13459 snprintf(temp_buf, sizeof(temp_buf),
13460 "%12g",
13461 ts.total_space
13462 * pow(2.0, -128 + 48));
13463 vty_out(vty, "%30s: %s\n",
13464 "/48 equivalent %s\n",
13465 temp_buf);
13466 } else {
13467 json_object_double_add(
13468 json, "/48equivalent",
13469 (double)(ts.total_space
13470 * pow(2.0,
13471 -128 + 48)));
13472 }
13473 } else {
13474 if (!json) {
13475 snprintf(temp_buf, sizeof(temp_buf),
13476 "%12.2f",
13477 ts.total_space * 100.
13478 * pow(2.0, -32));
13479 vty_out(vty, "%30s: %s\n",
13480 "% announced ", temp_buf);
13481 } else {
13482 json_object_double_add(
13483 json, "%announced",
13484 (double)(ts.total_space * 100.
13485 * pow(2.0, -32)));
13486 }
13487 if (!json) {
13488 snprintf(temp_buf, sizeof(temp_buf),
13489 "%12.2f",
13490 ts.total_space
13491 * pow(2.0, -32 + 8));
13492 vty_out(vty, "%30s: %s\n",
13493 "/8 equivalent ", temp_buf);
13494 } else {
13495 json_object_double_add(
13496 json, "/8equivalent",
13497 (double)(ts.total_space
13498 * pow(2.0, -32 + 8)));
13499 }
13500 if (!json) {
13501 snprintf(temp_buf, sizeof(temp_buf),
13502 "%12.2f",
13503 ts.total_space
13504 * pow(2.0, -32 + 24));
13505 vty_out(vty, "%30s: %s\n",
13506 "/24 equivalent ", temp_buf);
13507 } else {
13508 json_object_double_add(
13509 json, "/24equivalent",
13510 (double)(ts.total_space
13511 * pow(2.0, -32 + 24)));
13512 }
13513 }
13514 break;
13515 default:
13516 if (!json) {
13517 snprintf(temp_buf, sizeof(temp_buf), "%12llu",
13518 ts.counts[i]);
13519 vty_out(vty, "%-30s: %s",
13520 table_stats_strs[i]
13521 [TABLE_STATS_IDX_VTY],
13522 temp_buf);
13523 } else {
13524 json_object_int_add(
13525 json,
13526 table_stats_strs[i]
13527 [TABLE_STATS_IDX_JSON],
13528 ts.counts[i]);
13529 }
13530 }
13531 if (!json)
13532 vty_out(vty, "\n");
13533 }
13534
13535 switch (afi) {
13536 case AFI_IP:
13537 bitlen = IPV4_MAX_BITLEN;
13538 break;
13539 case AFI_IP6:
13540 bitlen = IPV6_MAX_BITLEN;
13541 break;
13542 case AFI_L2VPN:
13543 bitlen = EVPN_ROUTE_PREFIXLEN;
13544 break;
13545 default:
13546 break;
13547 }
13548
13549 if (json) {
13550 json_bitlen = json_object_new_array();
13551
13552 for (i = 0; i <= bitlen; i++) {
13553 struct json_object *ind_bit = json_object_new_object();
13554
13555 if (!ts.prefix_len_count[i])
13556 continue;
13557
13558 snprintf(temp_buf, sizeof(temp_buf), "%u", i);
13559 json_object_int_add(ind_bit, temp_buf,
13560 ts.prefix_len_count[i]);
13561 json_object_array_add(json_bitlen, ind_bit);
13562 }
13563 json_object_object_add(json, "prefixLength", json_bitlen);
13564 }
13565
13566 end_table_stats:
13567 if (json)
13568 json_object_array_add(json_array, json);
13569 return ret;
13570 }
13571
13572 static int bgp_table_stats(struct vty *vty, struct bgp *bgp, afi_t afi,
13573 safi_t safi, struct json_object *json_array)
13574 {
13575 if (!bgp) {
13576 bgp_table_stats_all(vty, afi, safi, json_array);
13577 return CMD_SUCCESS;
13578 }
13579
13580 return bgp_table_stats_single(vty, bgp, afi, safi, json_array);
13581 }
13582
13583 enum bgp_pcounts {
13584 PCOUNT_ADJ_IN = 0,
13585 PCOUNT_DAMPED,
13586 PCOUNT_REMOVED,
13587 PCOUNT_HISTORY,
13588 PCOUNT_STALE,
13589 PCOUNT_VALID,
13590 PCOUNT_ALL,
13591 PCOUNT_COUNTED,
13592 PCOUNT_BPATH_SELECTED,
13593 PCOUNT_PFCNT, /* the figure we display to users */
13594 PCOUNT_MAX,
13595 };
13596
13597 static const char *const pcount_strs[] = {
13598 [PCOUNT_ADJ_IN] = "Adj-in",
13599 [PCOUNT_DAMPED] = "Damped",
13600 [PCOUNT_REMOVED] = "Removed",
13601 [PCOUNT_HISTORY] = "History",
13602 [PCOUNT_STALE] = "Stale",
13603 [PCOUNT_VALID] = "Valid",
13604 [PCOUNT_ALL] = "All RIB",
13605 [PCOUNT_COUNTED] = "PfxCt counted",
13606 [PCOUNT_BPATH_SELECTED] = "PfxCt Best Selected",
13607 [PCOUNT_PFCNT] = "Useable",
13608 [PCOUNT_MAX] = NULL,
13609 };
13610
13611 struct peer_pcounts {
13612 unsigned int count[PCOUNT_MAX];
13613 const struct peer *peer;
13614 const struct bgp_table *table;
13615 safi_t safi;
13616 };
13617
13618 static void bgp_peer_count_proc(struct bgp_dest *rn, struct peer_pcounts *pc)
13619 {
13620 const struct bgp_adj_in *ain;
13621 const struct bgp_path_info *pi;
13622 const struct peer *peer = pc->peer;
13623
13624 for (ain = rn->adj_in; ain; ain = ain->next)
13625 if (ain->peer == peer)
13626 pc->count[PCOUNT_ADJ_IN]++;
13627
13628 for (pi = bgp_dest_get_bgp_path_info(rn); pi; pi = pi->next) {
13629
13630 if (pi->peer != peer)
13631 continue;
13632
13633 pc->count[PCOUNT_ALL]++;
13634
13635 if (CHECK_FLAG(pi->flags, BGP_PATH_DAMPED))
13636 pc->count[PCOUNT_DAMPED]++;
13637 if (CHECK_FLAG(pi->flags, BGP_PATH_HISTORY))
13638 pc->count[PCOUNT_HISTORY]++;
13639 if (CHECK_FLAG(pi->flags, BGP_PATH_REMOVED))
13640 pc->count[PCOUNT_REMOVED]++;
13641 if (CHECK_FLAG(pi->flags, BGP_PATH_STALE))
13642 pc->count[PCOUNT_STALE]++;
13643 if (CHECK_FLAG(pi->flags, BGP_PATH_VALID))
13644 pc->count[PCOUNT_VALID]++;
13645 if (!CHECK_FLAG(pi->flags, BGP_PATH_UNUSEABLE))
13646 pc->count[PCOUNT_PFCNT]++;
13647 if (CHECK_FLAG(pi->flags, BGP_PATH_SELECTED))
13648 pc->count[PCOUNT_BPATH_SELECTED]++;
13649
13650 if (CHECK_FLAG(pi->flags, BGP_PATH_COUNTED)) {
13651 pc->count[PCOUNT_COUNTED]++;
13652 if (CHECK_FLAG(pi->flags, BGP_PATH_UNUSEABLE))
13653 flog_err(
13654 EC_LIB_DEVELOPMENT,
13655 "Attempting to count but flags say it is unusable");
13656 } else {
13657 if (!CHECK_FLAG(pi->flags, BGP_PATH_UNUSEABLE))
13658 flog_err(
13659 EC_LIB_DEVELOPMENT,
13660 "Not counted but flags say we should");
13661 }
13662 }
13663 }
13664
13665 static void bgp_peer_count_walker(struct thread *t)
13666 {
13667 struct bgp_dest *rn, *rm;
13668 const struct bgp_table *table;
13669 struct peer_pcounts *pc = THREAD_ARG(t);
13670
13671 if (pc->safi == SAFI_MPLS_VPN || pc->safi == SAFI_ENCAP
13672 || pc->safi == SAFI_EVPN) {
13673 /* Special handling for 2-level routing tables. */
13674 for (rn = bgp_table_top(pc->table); rn;
13675 rn = bgp_route_next(rn)) {
13676 table = bgp_dest_get_bgp_table_info(rn);
13677 if (table != NULL)
13678 for (rm = bgp_table_top(table); rm;
13679 rm = bgp_route_next(rm))
13680 bgp_peer_count_proc(rm, pc);
13681 }
13682 } else
13683 for (rn = bgp_table_top(pc->table); rn; rn = bgp_route_next(rn))
13684 bgp_peer_count_proc(rn, pc);
13685 }
13686
13687 static int bgp_peer_counts(struct vty *vty, struct peer *peer, afi_t afi,
13688 safi_t safi, bool use_json)
13689 {
13690 struct peer_pcounts pcounts = {.peer = peer};
13691 unsigned int i;
13692 json_object *json = NULL;
13693 json_object *json_loop = NULL;
13694
13695 if (use_json) {
13696 json = json_object_new_object();
13697 json_loop = json_object_new_object();
13698 }
13699
13700 if (!peer || !peer->bgp || !peer->afc[afi][safi]
13701 || !peer->bgp->rib[afi][safi]) {
13702 if (use_json) {
13703 json_object_string_add(
13704 json, "warning",
13705 "No such neighbor or address family");
13706 vty_out(vty, "%s\n", json_object_to_json_string(json));
13707 json_object_free(json);
13708 json_object_free(json_loop);
13709 } else
13710 vty_out(vty, "%% No such neighbor or address family\n");
13711
13712 return CMD_WARNING;
13713 }
13714
13715 memset(&pcounts, 0, sizeof(pcounts));
13716 pcounts.peer = peer;
13717 pcounts.table = peer->bgp->rib[afi][safi];
13718 pcounts.safi = safi;
13719
13720 /* in-place call via thread subsystem so as to record execution time
13721 * stats for the thread-walk (i.e. ensure this can't be blamed on
13722 * on just vty_read()).
13723 */
13724 thread_execute(bm->master, bgp_peer_count_walker, &pcounts, 0);
13725
13726 if (use_json) {
13727 json_object_string_add(json, "prefixCountsFor", peer->host);
13728 json_object_string_add(json, "multiProtocol",
13729 get_afi_safi_str(afi, safi, true));
13730 json_object_int_add(json, "pfxCounter",
13731 peer->pcount[afi][safi]);
13732
13733 for (i = 0; i < PCOUNT_MAX; i++)
13734 json_object_int_add(json_loop, pcount_strs[i],
13735 pcounts.count[i]);
13736
13737 json_object_object_add(json, "ribTableWalkCounters", json_loop);
13738
13739 if (pcounts.count[PCOUNT_PFCNT] != peer->pcount[afi][safi]) {
13740 json_object_string_add(json, "pfxctDriftFor",
13741 peer->host);
13742 json_object_string_add(
13743 json, "recommended",
13744 "Please report this bug, with the above command output");
13745 }
13746 vty_json(vty, json);
13747 } else {
13748
13749 if (peer->hostname
13750 && CHECK_FLAG(peer->bgp->flags, BGP_FLAG_SHOW_HOSTNAME)) {
13751 vty_out(vty, "Prefix counts for %s/%s, %s\n",
13752 peer->hostname, peer->host,
13753 get_afi_safi_str(afi, safi, false));
13754 } else {
13755 vty_out(vty, "Prefix counts for %s, %s\n", peer->host,
13756 get_afi_safi_str(afi, safi, false));
13757 }
13758
13759 vty_out(vty, "PfxCt: %u\n", peer->pcount[afi][safi]);
13760 vty_out(vty, "\nCounts from RIB table walk:\n\n");
13761
13762 for (i = 0; i < PCOUNT_MAX; i++)
13763 vty_out(vty, "%20s: %-10d\n", pcount_strs[i],
13764 pcounts.count[i]);
13765
13766 if (pcounts.count[PCOUNT_PFCNT] != peer->pcount[afi][safi]) {
13767 vty_out(vty, "%s [pcount] PfxCt drift!\n", peer->host);
13768 vty_out(vty,
13769 "Please report this bug, with the above command output\n");
13770 }
13771 }
13772
13773 return CMD_SUCCESS;
13774 }
13775
13776 DEFUN (show_ip_bgp_instance_neighbor_prefix_counts,
13777 show_ip_bgp_instance_neighbor_prefix_counts_cmd,
13778 "show [ip] bgp [<view|vrf> VIEWVRFNAME] ["BGP_AFI_CMD_STR" ["BGP_SAFI_CMD_STR"]] neighbors <A.B.C.D|X:X::X:X|WORD> prefix-counts [json]",
13779 SHOW_STR
13780 IP_STR
13781 BGP_STR
13782 BGP_INSTANCE_HELP_STR
13783 BGP_AFI_HELP_STR
13784 BGP_SAFI_HELP_STR
13785 "Detailed information on TCP and BGP neighbor connections\n"
13786 "Neighbor to display information about\n"
13787 "Neighbor to display information about\n"
13788 "Neighbor on BGP configured interface\n"
13789 "Display detailed prefix count information\n"
13790 JSON_STR)
13791 {
13792 afi_t afi = AFI_IP6;
13793 safi_t safi = SAFI_UNICAST;
13794 struct peer *peer;
13795 int idx = 0;
13796 struct bgp *bgp = NULL;
13797 bool uj = use_json(argc, argv);
13798
13799 if (uj)
13800 argc--;
13801
13802 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
13803 &bgp, uj);
13804 if (!idx)
13805 return CMD_WARNING;
13806
13807 argv_find(argv, argc, "neighbors", &idx);
13808 peer = peer_lookup_in_view(vty, bgp, argv[idx + 1]->arg, uj);
13809 if (!peer)
13810 return CMD_WARNING;
13811
13812 return bgp_peer_counts(vty, peer, afi, safi, uj);
13813 }
13814
13815 #ifdef KEEP_OLD_VPN_COMMANDS
13816 DEFUN (show_ip_bgp_vpn_neighbor_prefix_counts,
13817 show_ip_bgp_vpn_neighbor_prefix_counts_cmd,
13818 "show [ip] bgp <vpnv4|vpnv6> all neighbors <A.B.C.D|X:X::X:X|WORD> prefix-counts [json]",
13819 SHOW_STR
13820 IP_STR
13821 BGP_STR
13822 BGP_VPNVX_HELP_STR
13823 "Display information about all VPNv4 NLRIs\n"
13824 "Detailed information on TCP and BGP neighbor connections\n"
13825 "Neighbor to display information about\n"
13826 "Neighbor to display information about\n"
13827 "Neighbor on BGP configured interface\n"
13828 "Display detailed prefix count information\n"
13829 JSON_STR)
13830 {
13831 int idx_peer = 6;
13832 struct peer *peer;
13833 bool uj = use_json(argc, argv);
13834
13835 peer = peer_lookup_in_view(vty, NULL, argv[idx_peer]->arg, uj);
13836 if (!peer)
13837 return CMD_WARNING;
13838
13839 return bgp_peer_counts(vty, peer, AFI_IP, SAFI_MPLS_VPN, uj);
13840 }
13841
13842 DEFUN (show_ip_bgp_vpn_all_route_prefix,
13843 show_ip_bgp_vpn_all_route_prefix_cmd,
13844 "show [ip] bgp <vpnv4|vpnv6> all <A.B.C.D|A.B.C.D/M> [json]",
13845 SHOW_STR
13846 IP_STR
13847 BGP_STR
13848 BGP_VPNVX_HELP_STR
13849 "Display information about all VPNv4 NLRIs\n"
13850 "Network in the BGP routing table to display\n"
13851 "Network in the BGP routing table to display\n"
13852 JSON_STR)
13853 {
13854 int idx = 0;
13855 char *network = NULL;
13856 struct bgp *bgp = bgp_get_default();
13857 if (!bgp) {
13858 vty_out(vty, "Can't find default instance\n");
13859 return CMD_WARNING;
13860 }
13861
13862 if (argv_find(argv, argc, "A.B.C.D", &idx))
13863 network = argv[idx]->arg;
13864 else if (argv_find(argv, argc, "A.B.C.D/M", &idx))
13865 network = argv[idx]->arg;
13866 else {
13867 vty_out(vty, "Unable to figure out Network\n");
13868 return CMD_WARNING;
13869 }
13870
13871 return bgp_show_route(vty, bgp, network, AFI_IP, SAFI_MPLS_VPN, NULL, 0,
13872 BGP_PATH_SHOW_ALL, RPKI_NOT_BEING_USED,
13873 use_json(argc, argv));
13874 }
13875 #endif /* KEEP_OLD_VPN_COMMANDS */
13876
13877 DEFUN (show_bgp_l2vpn_evpn_route_prefix,
13878 show_bgp_l2vpn_evpn_route_prefix_cmd,
13879 "show bgp l2vpn evpn <A.B.C.D|A.B.C.D/M|X:X::X:X|X:X::X:X/M> [json]",
13880 SHOW_STR
13881 BGP_STR
13882 L2VPN_HELP_STR
13883 EVPN_HELP_STR
13884 "Network in the BGP routing table to display\n"
13885 "Network in the BGP routing table to display\n"
13886 "Network in the BGP routing table to display\n"
13887 "Network in the BGP routing table to display\n"
13888 JSON_STR)
13889 {
13890 int idx = 0;
13891 char *network = NULL;
13892 int prefix_check = 0;
13893
13894 if (argv_find(argv, argc, "A.B.C.D", &idx) ||
13895 argv_find(argv, argc, "X:X::X:X", &idx))
13896 network = argv[idx]->arg;
13897 else if (argv_find(argv, argc, "A.B.C.D/M", &idx) ||
13898 argv_find(argv, argc, "X:X::X:X/M", &idx)) {
13899 network = argv[idx]->arg;
13900 prefix_check = 1;
13901 } else {
13902 vty_out(vty, "Unable to figure out Network\n");
13903 return CMD_WARNING;
13904 }
13905 return bgp_show_route(vty, NULL, network, AFI_L2VPN, SAFI_EVPN, NULL,
13906 prefix_check, BGP_PATH_SHOW_ALL,
13907 RPKI_NOT_BEING_USED, use_json(argc, argv));
13908 }
13909
13910 static void show_adj_route_header(struct vty *vty, struct peer *peer,
13911 struct bgp_table *table, int *header1,
13912 int *header2, json_object *json,
13913 json_object *json_scode,
13914 json_object *json_ocode, bool wide,
13915 bool detail)
13916 {
13917 uint64_t version = table ? table->version : 0;
13918
13919 if (*header1) {
13920 if (json) {
13921 json_object_int_add(json, "bgpTableVersion", version);
13922 json_object_string_addf(json, "bgpLocalRouterId",
13923 "%pI4", &peer->bgp->router_id);
13924 json_object_int_add(json, "defaultLocPrf",
13925 peer->bgp->default_local_pref);
13926 json_object_int_add(json, "localAS",
13927 peer->change_local_as
13928 ? peer->change_local_as
13929 : peer->local_as);
13930 json_object_object_add(json, "bgpStatusCodes",
13931 json_scode);
13932 json_object_object_add(json, "bgpOriginCodes",
13933 json_ocode);
13934 } else {
13935 vty_out(vty,
13936 "BGP table version is %" PRIu64
13937 ", local router ID is %pI4, vrf id ",
13938 version, &peer->bgp->router_id);
13939 if (peer->bgp->vrf_id == VRF_UNKNOWN)
13940 vty_out(vty, "%s", VRFID_NONE_STR);
13941 else
13942 vty_out(vty, "%u", peer->bgp->vrf_id);
13943 vty_out(vty, "\n");
13944 vty_out(vty, "Default local pref %u, ",
13945 peer->bgp->default_local_pref);
13946 vty_out(vty, "local AS %u\n",
13947 peer->change_local_as ? peer->change_local_as
13948 : peer->local_as);
13949 if (!detail) {
13950 vty_out(vty, BGP_SHOW_SCODE_HEADER);
13951 vty_out(vty, BGP_SHOW_NCODE_HEADER);
13952 vty_out(vty, BGP_SHOW_OCODE_HEADER);
13953 vty_out(vty, BGP_SHOW_RPKI_HEADER);
13954 }
13955 }
13956 *header1 = 0;
13957 }
13958 if (*header2) {
13959 if (!json && !detail)
13960 vty_out(vty, (wide ? BGP_SHOW_HEADER_WIDE
13961 : BGP_SHOW_HEADER));
13962 *header2 = 0;
13963 }
13964 }
13965
13966 static void
13967 show_adj_route(struct vty *vty, struct peer *peer, struct bgp_table *table,
13968 afi_t afi, safi_t safi, enum bgp_show_adj_route_type type,
13969 const char *rmap_name, json_object *json, json_object *json_ar,
13970 json_object *json_scode, json_object *json_ocode,
13971 uint16_t show_flags, int *header1, int *header2, char *rd_str,
13972 unsigned long *output_count, unsigned long *filtered_count)
13973 {
13974 struct bgp_adj_in *ain;
13975 struct bgp_adj_out *adj;
13976 struct bgp_dest *dest;
13977 struct bgp *bgp;
13978 struct attr attr;
13979 int ret;
13980 struct update_subgroup *subgrp;
13981 struct peer_af *paf;
13982 bool route_filtered;
13983 bool detail = CHECK_FLAG(show_flags, BGP_SHOW_OPT_ROUTES_DETAIL);
13984 bool use_json = CHECK_FLAG(show_flags, BGP_SHOW_OPT_JSON);
13985 bool wide = CHECK_FLAG(show_flags, BGP_SHOW_OPT_WIDE);
13986 bool show_rd = ((safi == SAFI_MPLS_VPN) || (safi == SAFI_ENCAP)
13987 || (safi == SAFI_EVPN))
13988 ? true
13989 : false;
13990 int display = 0;
13991 json_object *json_net = NULL;
13992
13993 bgp = peer->bgp;
13994
13995 subgrp = peer_subgroup(peer, afi, safi);
13996
13997 if (type == bgp_show_adj_route_advertised && subgrp
13998 && CHECK_FLAG(subgrp->sflags, SUBGRP_STATUS_DEFAULT_ORIGINATE)) {
13999 if (use_json) {
14000 json_object_int_add(json, "bgpTableVersion",
14001 table->version);
14002 json_object_string_addf(json, "bgpLocalRouterId",
14003 "%pI4", &bgp->router_id);
14004 json_object_int_add(json, "defaultLocPrf",
14005 bgp->default_local_pref);
14006 json_object_int_add(json, "localAS",
14007 peer->change_local_as
14008 ? peer->change_local_as
14009 : peer->local_as);
14010 json_object_object_add(json, "bgpStatusCodes",
14011 json_scode);
14012 json_object_object_add(json, "bgpOriginCodes",
14013 json_ocode);
14014 json_object_string_add(
14015 json, "bgpOriginatingDefaultNetwork",
14016 (afi == AFI_IP) ? "0.0.0.0/0" : "::/0");
14017 } else {
14018 vty_out(vty,
14019 "BGP table version is %" PRIu64
14020 ", local router ID is %pI4, vrf id ",
14021 table->version, &bgp->router_id);
14022 if (bgp->vrf_id == VRF_UNKNOWN)
14023 vty_out(vty, "%s", VRFID_NONE_STR);
14024 else
14025 vty_out(vty, "%u", bgp->vrf_id);
14026 vty_out(vty, "\n");
14027 vty_out(vty, "Default local pref %u, ",
14028 bgp->default_local_pref);
14029 vty_out(vty, "local AS %u\n",
14030 peer->change_local_as ? peer->change_local_as
14031 : peer->local_as);
14032 if (!detail) {
14033 vty_out(vty, BGP_SHOW_SCODE_HEADER);
14034 vty_out(vty, BGP_SHOW_NCODE_HEADER);
14035 vty_out(vty, BGP_SHOW_OCODE_HEADER);
14036 vty_out(vty, BGP_SHOW_RPKI_HEADER);
14037 }
14038
14039 vty_out(vty, "Originating default network %s\n\n",
14040 (afi == AFI_IP) ? "0.0.0.0/0" : "::/0");
14041 }
14042 (*output_count)++;
14043 *header1 = 0;
14044 }
14045
14046 for (dest = bgp_table_top(table); dest; dest = bgp_route_next(dest)) {
14047 if (type == bgp_show_adj_route_received
14048 || type == bgp_show_adj_route_filtered) {
14049 for (ain = dest->adj_in; ain; ain = ain->next) {
14050 if (ain->peer != peer)
14051 continue;
14052
14053 show_adj_route_header(vty, peer, table, header1,
14054 header2, json, json_scode,
14055 json_ocode, wide, detail);
14056
14057 if ((safi == SAFI_MPLS_VPN)
14058 || (safi == SAFI_ENCAP)
14059 || (safi == SAFI_EVPN)) {
14060 if (use_json)
14061 json_object_string_add(
14062 json_ar, "rd", rd_str);
14063 else if (show_rd && rd_str) {
14064 vty_out(vty,
14065 "Route Distinguisher: %s\n",
14066 rd_str);
14067 show_rd = false;
14068 }
14069 }
14070
14071 attr = *ain->attr;
14072 route_filtered = false;
14073
14074 /* Filter prefix using distribute list,
14075 * filter list or prefix list
14076 */
14077 const struct prefix *rn_p =
14078 bgp_dest_get_prefix(dest);
14079 if ((bgp_input_filter(peer, rn_p, &attr, afi,
14080 safi))
14081 == FILTER_DENY)
14082 route_filtered = true;
14083
14084 /* Filter prefix using route-map */
14085 ret = bgp_input_modifier(peer, rn_p, &attr, afi,
14086 safi, rmap_name, NULL,
14087 0, NULL);
14088
14089 if (type == bgp_show_adj_route_filtered &&
14090 !route_filtered && ret != RMAP_DENY) {
14091 bgp_attr_flush(&attr);
14092 continue;
14093 }
14094
14095 if (type == bgp_show_adj_route_received
14096 && (route_filtered || ret == RMAP_DENY))
14097 (*filtered_count)++;
14098
14099 if (detail) {
14100 if (use_json)
14101 json_net =
14102 json_object_new_object();
14103 bgp_show_path_info(
14104 NULL /* prefix_rd */, dest, vty,
14105 bgp, afi, safi, json_net,
14106 BGP_PATH_SHOW_ALL, &display,
14107 RPKI_NOT_BEING_USED);
14108 if (use_json)
14109 json_object_object_addf(
14110 json_ar, json_net,
14111 "%pFX", rn_p);
14112 } else
14113 route_vty_out_tmp(vty, dest, rn_p,
14114 &attr, safi, use_json,
14115 json_ar, wide);
14116 bgp_attr_flush(&attr);
14117 (*output_count)++;
14118 }
14119 } else if (type == bgp_show_adj_route_advertised) {
14120 RB_FOREACH (adj, bgp_adj_out_rb, &dest->adj_out)
14121 SUBGRP_FOREACH_PEER (adj->subgroup, paf) {
14122 if (paf->peer != peer || !adj->attr)
14123 continue;
14124
14125 show_adj_route_header(
14126 vty, peer, table, header1,
14127 header2, json, json_scode,
14128 json_ocode, wide, detail);
14129
14130 const struct prefix *rn_p =
14131 bgp_dest_get_prefix(dest);
14132
14133 attr = *adj->attr;
14134 ret = bgp_output_modifier(
14135 peer, rn_p, &attr, afi, safi,
14136 rmap_name);
14137
14138 if (ret != RMAP_DENY) {
14139 if ((safi == SAFI_MPLS_VPN)
14140 || (safi == SAFI_ENCAP)
14141 || (safi == SAFI_EVPN)) {
14142 if (use_json)
14143 json_object_string_add(
14144 json_ar,
14145 "rd",
14146 rd_str);
14147 else if (show_rd
14148 && rd_str) {
14149 vty_out(vty,
14150 "Route Distinguisher: %s\n",
14151 rd_str);
14152 show_rd = false;
14153 }
14154 }
14155 if (detail) {
14156 if (use_json)
14157 json_net =
14158 json_object_new_object();
14159 bgp_show_path_info(
14160 NULL /* prefix_rd
14161 */
14162 ,
14163 dest, vty, bgp,
14164 afi, safi,
14165 json_net,
14166 BGP_PATH_SHOW_ALL,
14167 &display,
14168 RPKI_NOT_BEING_USED);
14169 if (use_json)
14170 json_object_object_addf(
14171 json_ar,
14172 json_net,
14173 "%pFX",
14174 rn_p);
14175 } else
14176 route_vty_out_tmp(
14177 vty, dest, rn_p,
14178 &attr, safi,
14179 use_json,
14180 json_ar, wide);
14181 (*output_count)++;
14182 } else {
14183 (*filtered_count)++;
14184 }
14185
14186 bgp_attr_flush(&attr);
14187 }
14188 } else if (type == bgp_show_adj_route_bestpath) {
14189 struct bgp_path_info *pi;
14190
14191 show_adj_route_header(vty, peer, table, header1,
14192 header2, json, json_scode,
14193 json_ocode, wide, detail);
14194
14195 for (pi = bgp_dest_get_bgp_path_info(dest); pi;
14196 pi = pi->next) {
14197 if (pi->peer != peer)
14198 continue;
14199
14200 if (!CHECK_FLAG(pi->flags, BGP_PATH_SELECTED))
14201 continue;
14202
14203 route_vty_out_tmp(vty, dest,
14204 bgp_dest_get_prefix(dest),
14205 pi->attr, safi, use_json,
14206 json_ar, wide);
14207 (*output_count)++;
14208 }
14209 }
14210 }
14211 }
14212
14213 static int peer_adj_routes(struct vty *vty, struct peer *peer, afi_t afi,
14214 safi_t safi, enum bgp_show_adj_route_type type,
14215 const char *rmap_name, uint16_t show_flags)
14216 {
14217 struct bgp *bgp;
14218 struct bgp_table *table;
14219 json_object *json = NULL;
14220 json_object *json_scode = NULL;
14221 json_object *json_ocode = NULL;
14222 json_object *json_ar = NULL;
14223 bool use_json = CHECK_FLAG(show_flags, BGP_SHOW_OPT_JSON);
14224
14225 /* Init BGP headers here so they're only displayed once
14226 * even if 'table' is 2-tier (MPLS_VPN, ENCAP, EVPN).
14227 */
14228 int header1 = 1;
14229 int header2 = 1;
14230
14231 /*
14232 * Initialize variables for each RD
14233 * All prefixes under an RD is aggregated within "json_routes"
14234 */
14235 char rd_str[BUFSIZ] = {0};
14236 json_object *json_routes = NULL;
14237
14238
14239 /* For 2-tier tables, prefix counts need to be
14240 * maintained across multiple runs of show_adj_route()
14241 */
14242 unsigned long output_count_per_rd;
14243 unsigned long filtered_count_per_rd;
14244 unsigned long output_count = 0;
14245 unsigned long filtered_count = 0;
14246
14247 if (use_json) {
14248 json = json_object_new_object();
14249 json_ar = json_object_new_object();
14250 json_scode = json_object_new_object();
14251 json_ocode = json_object_new_object();
14252 #if CONFDATE > 20231208
14253 CPP_NOTICE("Drop `bgpStatusCodes` from JSON outputs")
14254 #endif
14255 json_object_string_add(json_scode, "suppressed", "s");
14256 json_object_string_add(json_scode, "damped", "d");
14257 json_object_string_add(json_scode, "history", "h");
14258 json_object_string_add(json_scode, "valid", "*");
14259 json_object_string_add(json_scode, "best", ">");
14260 json_object_string_add(json_scode, "multipath", "=");
14261 json_object_string_add(json_scode, "internal", "i");
14262 json_object_string_add(json_scode, "ribFailure", "r");
14263 json_object_string_add(json_scode, "stale", "S");
14264 json_object_string_add(json_scode, "removed", "R");
14265
14266 #if CONFDATE > 20231208
14267 CPP_NOTICE("Drop `bgpOriginCodes` from JSON outputs")
14268 #endif
14269 json_object_string_add(json_ocode, "igp", "i");
14270 json_object_string_add(json_ocode, "egp", "e");
14271 json_object_string_add(json_ocode, "incomplete", "?");
14272 }
14273
14274 if (!peer || !peer->afc[afi][safi]) {
14275 if (use_json) {
14276 json_object_string_add(
14277 json, "warning",
14278 "No such neighbor or address family");
14279 vty_out(vty, "%s\n", json_object_to_json_string(json));
14280 json_object_free(json);
14281 json_object_free(json_ar);
14282 json_object_free(json_scode);
14283 json_object_free(json_ocode);
14284 } else
14285 vty_out(vty, "%% No such neighbor or address family\n");
14286
14287 return CMD_WARNING;
14288 }
14289
14290 if ((type == bgp_show_adj_route_received
14291 || type == bgp_show_adj_route_filtered)
14292 && !CHECK_FLAG(peer->af_flags[afi][safi],
14293 PEER_FLAG_SOFT_RECONFIG)) {
14294 if (use_json) {
14295 json_object_string_add(
14296 json, "warning",
14297 "Inbound soft reconfiguration not enabled");
14298 vty_out(vty, "%s\n", json_object_to_json_string(json));
14299 json_object_free(json);
14300 json_object_free(json_ar);
14301 json_object_free(json_scode);
14302 json_object_free(json_ocode);
14303 } else
14304 vty_out(vty,
14305 "%% Inbound soft reconfiguration not enabled\n");
14306
14307 return CMD_WARNING;
14308 }
14309
14310 bgp = peer->bgp;
14311
14312 /* labeled-unicast routes live in the unicast table */
14313 if (safi == SAFI_LABELED_UNICAST)
14314 table = bgp->rib[afi][SAFI_UNICAST];
14315 else
14316 table = bgp->rib[afi][safi];
14317
14318 if ((safi == SAFI_MPLS_VPN) || (safi == SAFI_ENCAP)
14319 || (safi == SAFI_EVPN)) {
14320
14321 struct bgp_dest *dest;
14322
14323 for (dest = bgp_table_top(table); dest;
14324 dest = bgp_route_next(dest)) {
14325 table = bgp_dest_get_bgp_table_info(dest);
14326 if (!table)
14327 continue;
14328
14329 output_count_per_rd = 0;
14330 filtered_count_per_rd = 0;
14331
14332 if (use_json)
14333 json_routes = json_object_new_object();
14334
14335 const struct prefix_rd *prd;
14336 prd = (const struct prefix_rd *)bgp_dest_get_prefix(
14337 dest);
14338
14339 prefix_rd2str(prd, rd_str, sizeof(rd_str));
14340
14341 show_adj_route(vty, peer, table, afi, safi, type,
14342 rmap_name, json, json_routes, json_scode,
14343 json_ocode, show_flags, &header1,
14344 &header2, rd_str, &output_count_per_rd,
14345 &filtered_count_per_rd);
14346
14347 /* Don't include an empty RD in the output! */
14348 if (json_routes && (output_count_per_rd > 0))
14349 json_object_object_add(json_ar, rd_str,
14350 json_routes);
14351
14352 output_count += output_count_per_rd;
14353 filtered_count += filtered_count_per_rd;
14354 }
14355 } else
14356 show_adj_route(vty, peer, table, afi, safi, type, rmap_name,
14357 json, json_ar, json_scode, json_ocode,
14358 show_flags, &header1, &header2, rd_str,
14359 &output_count, &filtered_count);
14360
14361 if (use_json) {
14362 if (type == bgp_show_adj_route_advertised)
14363 json_object_object_add(json, "advertisedRoutes",
14364 json_ar);
14365 else
14366 json_object_object_add(json, "receivedRoutes", json_ar);
14367 json_object_int_add(json, "totalPrefixCounter", output_count);
14368 json_object_int_add(json, "filteredPrefixCounter",
14369 filtered_count);
14370
14371 /*
14372 * These fields only give up ownership to `json` when `header1`
14373 * is used (set to zero). See code in `show_adj_route` and
14374 * `show_adj_route_header`.
14375 */
14376 if (header1 == 1) {
14377 json_object_free(json_scode);
14378 json_object_free(json_ocode);
14379 }
14380
14381 vty_json(vty, json);
14382 } else if (output_count > 0) {
14383 if (filtered_count > 0)
14384 vty_out(vty,
14385 "\nTotal number of prefixes %ld (%ld filtered)\n",
14386 output_count, filtered_count);
14387 else
14388 vty_out(vty, "\nTotal number of prefixes %ld\n",
14389 output_count);
14390 }
14391
14392 return CMD_SUCCESS;
14393 }
14394
14395 DEFPY (show_ip_bgp_instance_neighbor_bestpath_route,
14396 show_ip_bgp_instance_neighbor_bestpath_route_cmd,
14397 "show [ip] bgp [<view|vrf> VIEWVRFNAME] ["BGP_AFI_CMD_STR" ["BGP_SAFI_WITH_LABEL_CMD_STR"]] neighbors <A.B.C.D|X:X::X:X|WORD> bestpath-routes [json$uj | wide$wide]",
14398 SHOW_STR
14399 IP_STR
14400 BGP_STR
14401 BGP_INSTANCE_HELP_STR
14402 BGP_AFI_HELP_STR
14403 BGP_SAFI_WITH_LABEL_HELP_STR
14404 "Detailed information on TCP and BGP neighbor connections\n"
14405 "Neighbor to display information about\n"
14406 "Neighbor to display information about\n"
14407 "Neighbor on BGP configured interface\n"
14408 "Display the routes selected by best path\n"
14409 JSON_STR
14410 "Increase table width for longer prefixes\n")
14411 {
14412 afi_t afi = AFI_IP6;
14413 safi_t safi = SAFI_UNICAST;
14414 char *rmap_name = NULL;
14415 char *peerstr = NULL;
14416 struct bgp *bgp = NULL;
14417 struct peer *peer;
14418 enum bgp_show_adj_route_type type = bgp_show_adj_route_bestpath;
14419 int idx = 0;
14420 uint16_t show_flags = 0;
14421
14422 if (uj)
14423 SET_FLAG(show_flags, BGP_SHOW_OPT_JSON);
14424
14425 if (wide)
14426 SET_FLAG(show_flags, BGP_SHOW_OPT_WIDE);
14427
14428 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
14429 &bgp, uj);
14430
14431 if (!idx)
14432 return CMD_WARNING;
14433
14434 argv_find(argv, argc, "neighbors", &idx);
14435 peerstr = argv[++idx]->arg;
14436
14437 peer = peer_lookup_in_view(vty, bgp, peerstr, uj);
14438 if (!peer)
14439 return CMD_WARNING;
14440
14441 return peer_adj_routes(vty, peer, afi, safi, type, rmap_name,
14442 show_flags);
14443 }
14444
14445 DEFPY(show_ip_bgp_instance_neighbor_advertised_route,
14446 show_ip_bgp_instance_neighbor_advertised_route_cmd,
14447 "show [ip] bgp [<view|vrf> VIEWVRFNAME] [" BGP_AFI_CMD_STR " [" BGP_SAFI_WITH_LABEL_CMD_STR "]] [all$all] neighbors <A.B.C.D|X:X::X:X|WORD> <advertised-routes|received-routes|filtered-routes> [route-map RMAP_NAME$route_map] [detail$detail] [json$uj | wide$wide]",
14448 SHOW_STR
14449 IP_STR
14450 BGP_STR
14451 BGP_INSTANCE_HELP_STR
14452 BGP_AFI_HELP_STR
14453 BGP_SAFI_WITH_LABEL_HELP_STR
14454 "Display the entries for all address families\n"
14455 "Detailed information on TCP and BGP neighbor connections\n"
14456 "Neighbor to display information about\n"
14457 "Neighbor to display information about\n"
14458 "Neighbor on BGP configured interface\n"
14459 "Display the routes advertised to a BGP neighbor\n"
14460 "Display the received routes from neighbor\n"
14461 "Display the filtered routes received from neighbor\n"
14462 "Route-map to modify the attributes\n"
14463 "Name of the route map\n"
14464 "Display detailed version of routes\n"
14465 JSON_STR
14466 "Increase table width for longer prefixes\n")
14467 {
14468 afi_t afi = AFI_IP6;
14469 safi_t safi = SAFI_UNICAST;
14470 char *peerstr = NULL;
14471 struct bgp *bgp = NULL;
14472 struct peer *peer;
14473 enum bgp_show_adj_route_type type = bgp_show_adj_route_advertised;
14474 int idx = 0;
14475 bool first = true;
14476 uint16_t show_flags = 0;
14477 struct listnode *node;
14478 struct bgp *abgp;
14479
14480 if (detail)
14481 SET_FLAG(show_flags, BGP_SHOW_OPT_ROUTES_DETAIL);
14482
14483 if (uj) {
14484 argc--;
14485 SET_FLAG(show_flags, BGP_SHOW_OPT_JSON);
14486 }
14487
14488 if (all) {
14489 SET_FLAG(show_flags, BGP_SHOW_OPT_AFI_ALL);
14490 if (argv_find(argv, argc, "ipv4", &idx))
14491 SET_FLAG(show_flags, BGP_SHOW_OPT_AFI_IP);
14492
14493 if (argv_find(argv, argc, "ipv6", &idx))
14494 SET_FLAG(show_flags, BGP_SHOW_OPT_AFI_IP6);
14495 }
14496
14497 if (wide)
14498 SET_FLAG(show_flags, BGP_SHOW_OPT_WIDE);
14499
14500 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
14501 &bgp, uj);
14502 if (!idx)
14503 return CMD_WARNING;
14504
14505 /* neighbors <A.B.C.D|X:X::X:X|WORD> */
14506 argv_find(argv, argc, "neighbors", &idx);
14507 peerstr = argv[++idx]->arg;
14508
14509 peer = peer_lookup_in_view(vty, bgp, peerstr, uj);
14510 if (!peer)
14511 return CMD_WARNING;
14512
14513 if (argv_find(argv, argc, "advertised-routes", &idx))
14514 type = bgp_show_adj_route_advertised;
14515 else if (argv_find(argv, argc, "received-routes", &idx))
14516 type = bgp_show_adj_route_received;
14517 else if (argv_find(argv, argc, "filtered-routes", &idx))
14518 type = bgp_show_adj_route_filtered;
14519
14520 if (!all)
14521 return peer_adj_routes(vty, peer, afi, safi, type, route_map,
14522 show_flags);
14523 if (uj)
14524 vty_out(vty, "{\n");
14525
14526 if (CHECK_FLAG(show_flags, BGP_SHOW_OPT_AFI_IP)
14527 || CHECK_FLAG(show_flags, BGP_SHOW_OPT_AFI_IP6)) {
14528 afi = CHECK_FLAG(show_flags, BGP_SHOW_OPT_AFI_IP) ? AFI_IP
14529 : AFI_IP6;
14530 for (ALL_LIST_ELEMENTS_RO(bm->bgp, node, abgp)) {
14531 FOREACH_SAFI (safi) {
14532 if (!bgp_afi_safi_peer_exists(abgp, afi, safi))
14533 continue;
14534
14535 if (uj) {
14536 if (first)
14537 first = false;
14538 else
14539 vty_out(vty, ",\n");
14540 vty_out(vty, "\"%s\":",
14541 get_afi_safi_str(afi, safi,
14542 true));
14543 } else
14544 vty_out(vty,
14545 "\nFor address family: %s\n",
14546 get_afi_safi_str(afi, safi,
14547 false));
14548
14549 peer_adj_routes(vty, peer, afi, safi, type,
14550 route_map, show_flags);
14551 }
14552 }
14553 } else {
14554 for (ALL_LIST_ELEMENTS_RO(bm->bgp, node, abgp)) {
14555 FOREACH_AFI_SAFI (afi, safi) {
14556 if (!bgp_afi_safi_peer_exists(abgp, afi, safi))
14557 continue;
14558
14559 if (uj) {
14560 if (first)
14561 first = false;
14562 else
14563 vty_out(vty, ",\n");
14564 vty_out(vty, "\"%s\":",
14565 get_afi_safi_str(afi, safi,
14566 true));
14567 } else
14568 vty_out(vty,
14569 "\nFor address family: %s\n",
14570 get_afi_safi_str(afi, safi,
14571 false));
14572
14573 peer_adj_routes(vty, peer, afi, safi, type,
14574 route_map, show_flags);
14575 }
14576 }
14577 }
14578 if (uj)
14579 vty_out(vty, "}\n");
14580
14581 return CMD_SUCCESS;
14582 }
14583
14584 DEFUN (show_ip_bgp_neighbor_received_prefix_filter,
14585 show_ip_bgp_neighbor_received_prefix_filter_cmd,
14586 "show [ip] bgp [<view|vrf> VIEWVRFNAME] [<ipv4|ipv6> [unicast]] neighbors <A.B.C.D|X:X::X:X|WORD> received prefix-filter [json]",
14587 SHOW_STR
14588 IP_STR
14589 BGP_STR
14590 BGP_INSTANCE_HELP_STR
14591 BGP_AF_STR
14592 BGP_AF_STR
14593 BGP_AF_MODIFIER_STR
14594 "Detailed information on TCP and BGP neighbor connections\n"
14595 "Neighbor to display information about\n"
14596 "Neighbor to display information about\n"
14597 "Neighbor on BGP configured interface\n"
14598 "Display information received from a BGP neighbor\n"
14599 "Display the prefixlist filter\n"
14600 JSON_STR)
14601 {
14602 afi_t afi = AFI_IP6;
14603 safi_t safi = SAFI_UNICAST;
14604 char *peerstr = NULL;
14605 char name[BUFSIZ];
14606 struct peer *peer;
14607 int count;
14608 int idx = 0;
14609 struct bgp *bgp = NULL;
14610 bool uj = use_json(argc, argv);
14611
14612 if (uj)
14613 argc--;
14614
14615 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
14616 &bgp, uj);
14617 if (!idx)
14618 return CMD_WARNING;
14619
14620 /* neighbors <A.B.C.D|X:X::X:X|WORD> */
14621 argv_find(argv, argc, "neighbors", &idx);
14622 peerstr = argv[++idx]->arg;
14623
14624 peer = peer_lookup_in_view(vty, bgp, peerstr, uj);
14625 if (!peer)
14626 return CMD_WARNING;
14627
14628 snprintf(name, sizeof(name), "%s.%d.%d", peer->host, afi, safi);
14629 count = prefix_bgp_show_prefix_list(NULL, afi, name, uj);
14630 if (count) {
14631 if (!uj)
14632 vty_out(vty, "Address Family: %s\n",
14633 get_afi_safi_str(afi, safi, false));
14634 prefix_bgp_show_prefix_list(vty, afi, name, uj);
14635 } else {
14636 if (uj)
14637 vty_out(vty, "{}\n");
14638 else
14639 vty_out(vty, "No functional output\n");
14640 }
14641
14642 return CMD_SUCCESS;
14643 }
14644
14645 static int bgp_show_neighbor_route(struct vty *vty, struct peer *peer,
14646 afi_t afi, safi_t safi,
14647 enum bgp_show_type type, bool use_json)
14648 {
14649 uint16_t show_flags = 0;
14650
14651 if (use_json)
14652 SET_FLAG(show_flags, BGP_SHOW_OPT_JSON);
14653
14654 if (!peer || !peer->afc[afi][safi]) {
14655 if (use_json) {
14656 json_object *json_no = NULL;
14657 json_no = json_object_new_object();
14658 json_object_string_add(
14659 json_no, "warning",
14660 "No such neighbor or address family");
14661 vty_out(vty, "%s\n",
14662 json_object_to_json_string(json_no));
14663 json_object_free(json_no);
14664 } else
14665 vty_out(vty, "%% No such neighbor or address family\n");
14666 return CMD_WARNING;
14667 }
14668
14669 /* labeled-unicast routes live in the unicast table */
14670 if (safi == SAFI_LABELED_UNICAST)
14671 safi = SAFI_UNICAST;
14672
14673 return bgp_show(vty, peer->bgp, afi, safi, type, &peer->su, show_flags,
14674 RPKI_NOT_BEING_USED);
14675 }
14676
14677 DEFUN (show_ip_bgp_flowspec_routes_detailed,
14678 show_ip_bgp_flowspec_routes_detailed_cmd,
14679 "show [ip] bgp [<view|vrf> VIEWVRFNAME] ["BGP_AFI_CMD_STR" flowspec] detail [json]",
14680 SHOW_STR
14681 IP_STR
14682 BGP_STR
14683 BGP_INSTANCE_HELP_STR
14684 BGP_AFI_HELP_STR
14685 "SAFI Flowspec\n"
14686 "Detailed information on flowspec entries\n"
14687 JSON_STR)
14688 {
14689 afi_t afi = AFI_IP6;
14690 safi_t safi = SAFI_UNICAST;
14691 struct bgp *bgp = NULL;
14692 int idx = 0;
14693 bool uj = use_json(argc, argv);
14694 uint16_t show_flags = BGP_SHOW_OPT_ROUTES_DETAIL;
14695
14696 if (uj) {
14697 argc--;
14698 SET_FLAG(show_flags, BGP_SHOW_OPT_JSON);
14699 }
14700
14701 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
14702 &bgp, uj);
14703 if (!idx)
14704 return CMD_WARNING;
14705
14706 return bgp_show(vty, bgp, afi, safi, bgp_show_type_detail, NULL,
14707 show_flags, RPKI_NOT_BEING_USED);
14708 }
14709
14710 DEFUN (show_ip_bgp_neighbor_routes,
14711 show_ip_bgp_neighbor_routes_cmd,
14712 "show [ip] bgp [<view|vrf> VIEWVRFNAME] ["BGP_AFI_CMD_STR" ["BGP_SAFI_WITH_LABEL_CMD_STR"]] neighbors <A.B.C.D|X:X::X:X|WORD> <flap-statistics|dampened-routes|routes> [json]",
14713 SHOW_STR
14714 IP_STR
14715 BGP_STR
14716 BGP_INSTANCE_HELP_STR
14717 BGP_AFI_HELP_STR
14718 BGP_SAFI_WITH_LABEL_HELP_STR
14719 "Detailed information on TCP and BGP neighbor connections\n"
14720 "Neighbor to display information about\n"
14721 "Neighbor to display information about\n"
14722 "Neighbor on BGP configured interface\n"
14723 "Display flap statistics of the routes learned from neighbor\n"
14724 "Display the dampened routes received from neighbor\n"
14725 "Display routes learned from neighbor\n"
14726 JSON_STR)
14727 {
14728 char *peerstr = NULL;
14729 struct bgp *bgp = NULL;
14730 afi_t afi = AFI_IP6;
14731 safi_t safi = SAFI_UNICAST;
14732 struct peer *peer;
14733 enum bgp_show_type sh_type = bgp_show_type_neighbor;
14734 int idx = 0;
14735 bool uj = use_json(argc, argv);
14736
14737 if (uj)
14738 argc--;
14739
14740 bgp_vty_find_and_parse_afi_safi_bgp(vty, argv, argc, &idx, &afi, &safi,
14741 &bgp, uj);
14742 if (!idx)
14743 return CMD_WARNING;
14744
14745 /* neighbors <A.B.C.D|X:X::X:X|WORD> */
14746 argv_find(argv, argc, "neighbors", &idx);
14747 peerstr = argv[++idx]->arg;
14748
14749 peer = peer_lookup_in_view(vty, bgp, peerstr, uj);
14750 if (!peer)
14751 return CMD_WARNING;
14752
14753 if (argv_find(argv, argc, "flap-statistics", &idx))
14754 sh_type = bgp_show_type_flap_neighbor;
14755 else if (argv_find(argv, argc, "dampened-routes", &idx))
14756 sh_type = bgp_show_type_damp_neighbor;
14757 else if (argv_find(argv, argc, "routes", &idx))
14758 sh_type = bgp_show_type_neighbor;
14759
14760 return bgp_show_neighbor_route(vty, peer, afi, safi, sh_type, uj);
14761 }
14762
14763 struct bgp_table *bgp_distance_table[AFI_MAX][SAFI_MAX];
14764
14765 struct bgp_distance {
14766 /* Distance value for the IP source prefix. */
14767 uint8_t distance;
14768
14769 /* Name of the access-list to be matched. */
14770 char *access_list;
14771 };
14772
14773 DEFUN (show_bgp_afi_vpn_rd_route,
14774 show_bgp_afi_vpn_rd_route_cmd,
14775 "show bgp "BGP_AFI_CMD_STR" vpn rd <ASN:NN_OR_IP-ADDRESS:NN|all> <A.B.C.D/M|X:X::X:X/M> [json]",
14776 SHOW_STR
14777 BGP_STR
14778 BGP_AFI_HELP_STR
14779 BGP_AF_MODIFIER_STR
14780 "Display information for a route distinguisher\n"
14781 "Route Distinguisher\n"
14782 "All Route Distinguishers\n"
14783 "Network in the BGP routing table to display\n"
14784 "Network in the BGP routing table to display\n"
14785 JSON_STR)
14786 {
14787 int ret;
14788 struct prefix_rd prd;
14789 afi_t afi = AFI_MAX;
14790 int idx = 0;
14791
14792 if (!argv_find_and_parse_afi(argv, argc, &idx, &afi)) {
14793 vty_out(vty, "%% Malformed Address Family\n");
14794 return CMD_WARNING;
14795 }
14796
14797 if (!strcmp(argv[5]->arg, "all"))
14798 return bgp_show_route(vty, NULL, argv[6]->arg, afi,
14799 SAFI_MPLS_VPN, NULL, 0, BGP_PATH_SHOW_ALL,
14800 RPKI_NOT_BEING_USED,
14801 use_json(argc, argv));
14802
14803 ret = str2prefix_rd(argv[5]->arg, &prd);
14804 if (!ret) {
14805 vty_out(vty, "%% Malformed Route Distinguisher\n");
14806 return CMD_WARNING;
14807 }
14808
14809 return bgp_show_route(vty, NULL, argv[6]->arg, afi, SAFI_MPLS_VPN, &prd,
14810 0, BGP_PATH_SHOW_ALL, RPKI_NOT_BEING_USED,
14811 use_json(argc, argv));
14812 }
14813
14814 static struct bgp_distance *bgp_distance_new(void)
14815 {
14816 return XCALLOC(MTYPE_BGP_DISTANCE, sizeof(struct bgp_distance));
14817 }
14818
14819 static void bgp_distance_free(struct bgp_distance *bdistance)
14820 {
14821 XFREE(MTYPE_BGP_DISTANCE, bdistance);
14822 }
14823
14824 static int bgp_distance_set(struct vty *vty, const char *distance_str,
14825 const char *ip_str, const char *access_list_str)
14826 {
14827 int ret;
14828 afi_t afi;
14829 safi_t safi;
14830 struct prefix p;
14831 uint8_t distance;
14832 struct bgp_dest *dest;
14833 struct bgp_distance *bdistance;
14834
14835 afi = bgp_node_afi(vty);
14836 safi = bgp_node_safi(vty);
14837
14838 ret = str2prefix(ip_str, &p);
14839 if (ret == 0) {
14840 vty_out(vty, "Malformed prefix\n");
14841 return CMD_WARNING_CONFIG_FAILED;
14842 }
14843
14844 distance = atoi(distance_str);
14845
14846 /* Get BGP distance node. */
14847 dest = bgp_node_get(bgp_distance_table[afi][safi], &p);
14848 bdistance = bgp_dest_get_bgp_distance_info(dest);
14849 if (bdistance)
14850 bgp_dest_unlock_node(dest);
14851 else {
14852 bdistance = bgp_distance_new();
14853 bgp_dest_set_bgp_distance_info(dest, bdistance);
14854 }
14855
14856 /* Set distance value. */
14857 bdistance->distance = distance;
14858
14859 /* Reset access-list configuration. */
14860 XFREE(MTYPE_AS_LIST, bdistance->access_list);
14861 if (access_list_str)
14862 bdistance->access_list =
14863 XSTRDUP(MTYPE_AS_LIST, access_list_str);
14864
14865 return CMD_SUCCESS;
14866 }
14867
14868 static int bgp_distance_unset(struct vty *vty, const char *distance_str,
14869 const char *ip_str, const char *access_list_str)
14870 {
14871 int ret;
14872 afi_t afi;
14873 safi_t safi;
14874 struct prefix p;
14875 int distance;
14876 struct bgp_dest *dest;
14877 struct bgp_distance *bdistance;
14878
14879 afi = bgp_node_afi(vty);
14880 safi = bgp_node_safi(vty);
14881
14882 ret = str2prefix(ip_str, &p);
14883 if (ret == 0) {
14884 vty_out(vty, "Malformed prefix\n");
14885 return CMD_WARNING_CONFIG_FAILED;
14886 }
14887
14888 dest = bgp_node_lookup(bgp_distance_table[afi][safi], &p);
14889 if (!dest) {
14890 vty_out(vty, "Can't find specified prefix\n");
14891 return CMD_WARNING_CONFIG_FAILED;
14892 }
14893
14894 bdistance = bgp_dest_get_bgp_distance_info(dest);
14895 distance = atoi(distance_str);
14896
14897 if (bdistance->distance != distance) {
14898 vty_out(vty, "Distance does not match configured\n");
14899 bgp_dest_unlock_node(dest);
14900 return CMD_WARNING_CONFIG_FAILED;
14901 }
14902
14903 XFREE(MTYPE_AS_LIST, bdistance->access_list);
14904 bgp_distance_free(bdistance);
14905
14906 bgp_dest_set_bgp_path_info(dest, NULL);
14907 bgp_dest_unlock_node(dest);
14908 bgp_dest_unlock_node(dest);
14909
14910 return CMD_SUCCESS;
14911 }
14912
14913 /* Apply BGP information to distance method. */
14914 uint8_t bgp_distance_apply(const struct prefix *p, struct bgp_path_info *pinfo,
14915 afi_t afi, safi_t safi, struct bgp *bgp)
14916 {
14917 struct bgp_dest *dest;
14918 struct prefix q = {0};
14919 struct peer *peer;
14920 struct bgp_distance *bdistance;
14921 struct access_list *alist;
14922 struct bgp_static *bgp_static;
14923 struct bgp_path_info *bpi_ultimate;
14924
14925 if (!bgp)
14926 return 0;
14927
14928 peer = pinfo->peer;
14929
14930 if (pinfo->attr->distance)
14931 return pinfo->attr->distance;
14932
14933 /* get peer origin to calculate appropriate distance */
14934 if (pinfo->sub_type == BGP_ROUTE_IMPORTED) {
14935 bpi_ultimate = bgp_get_imported_bpi_ultimate(pinfo);
14936 peer = bpi_ultimate->peer;
14937 }
14938
14939 /* Check source address.
14940 * Note: for aggregate route, peer can have unspec af type.
14941 */
14942 if (pinfo->sub_type != BGP_ROUTE_AGGREGATE
14943 && !sockunion2hostprefix(&peer->su, &q))
14944 return 0;
14945
14946 dest = bgp_node_match(bgp_distance_table[afi][safi], &q);
14947 if (dest) {
14948 bdistance = bgp_dest_get_bgp_distance_info(dest);
14949 bgp_dest_unlock_node(dest);
14950
14951 if (bdistance->access_list) {
14952 alist = access_list_lookup(afi, bdistance->access_list);
14953 if (alist
14954 && access_list_apply(alist, p) == FILTER_PERMIT)
14955 return bdistance->distance;
14956 } else
14957 return bdistance->distance;
14958 }
14959
14960 /* Backdoor check. */
14961 dest = bgp_node_lookup(bgp->route[afi][safi], p);
14962 if (dest) {
14963 bgp_static = bgp_dest_get_bgp_static_info(dest);
14964 bgp_dest_unlock_node(dest);
14965
14966 if (bgp_static->backdoor) {
14967 if (bgp->distance_local[afi][safi])
14968 return bgp->distance_local[afi][safi];
14969 else
14970 return ZEBRA_IBGP_DISTANCE_DEFAULT;
14971 }
14972 }
14973
14974 if (peer->sort == BGP_PEER_EBGP) {
14975 if (bgp->distance_ebgp[afi][safi])
14976 return bgp->distance_ebgp[afi][safi];
14977 return ZEBRA_EBGP_DISTANCE_DEFAULT;
14978 } else if (peer->sort == BGP_PEER_IBGP) {
14979 if (bgp->distance_ibgp[afi][safi])
14980 return bgp->distance_ibgp[afi][safi];
14981 return ZEBRA_IBGP_DISTANCE_DEFAULT;
14982 } else {
14983 if (bgp->distance_local[afi][safi])
14984 return bgp->distance_local[afi][safi];
14985 return ZEBRA_IBGP_DISTANCE_DEFAULT;
14986 }
14987 }
14988
14989 /* If we enter `distance bgp (1-255) (1-255) (1-255)`,
14990 * we should tell ZEBRA update the routes for a specific
14991 * AFI/SAFI to reflect changes in RIB.
14992 */
14993 static void bgp_announce_routes_distance_update(struct bgp *bgp,
14994 afi_t update_afi,
14995 safi_t update_safi)
14996 {
14997 afi_t afi;
14998 safi_t safi;
14999
15000 FOREACH_AFI_SAFI (afi, safi) {
15001 if (!bgp_fibupd_safi(safi))
15002 continue;
15003
15004 if (afi != update_afi && safi != update_safi)
15005 continue;
15006
15007 if (BGP_DEBUG(zebra, ZEBRA))
15008 zlog_debug(
15009 "%s: Announcing routes due to distance change afi/safi (%d/%d)",
15010 __func__, afi, safi);
15011 bgp_zebra_announce_table(bgp, afi, safi);
15012 }
15013 }
15014
15015 DEFUN (bgp_distance,
15016 bgp_distance_cmd,
15017 "distance bgp (1-255) (1-255) (1-255)",
15018 "Define an administrative distance\n"
15019 "BGP distance\n"
15020 "Distance for routes external to the AS\n"
15021 "Distance for routes internal to the AS\n"
15022 "Distance for local routes\n")
15023 {
15024 VTY_DECLVAR_CONTEXT(bgp, bgp);
15025 int idx_number = 2;
15026 int idx_number_2 = 3;
15027 int idx_number_3 = 4;
15028 int distance_ebgp = atoi(argv[idx_number]->arg);
15029 int distance_ibgp = atoi(argv[idx_number_2]->arg);
15030 int distance_local = atoi(argv[idx_number_3]->arg);
15031 afi_t afi;
15032 safi_t safi;
15033
15034 afi = bgp_node_afi(vty);
15035 safi = bgp_node_safi(vty);
15036
15037 if (bgp->distance_ebgp[afi][safi] != distance_ebgp
15038 || bgp->distance_ibgp[afi][safi] != distance_ibgp
15039 || bgp->distance_local[afi][safi] != distance_local) {
15040 bgp->distance_ebgp[afi][safi] = distance_ebgp;
15041 bgp->distance_ibgp[afi][safi] = distance_ibgp;
15042 bgp->distance_local[afi][safi] = distance_local;
15043 bgp_announce_routes_distance_update(bgp, afi, safi);
15044 }
15045 return CMD_SUCCESS;
15046 }
15047
15048 DEFUN (no_bgp_distance,
15049 no_bgp_distance_cmd,
15050 "no distance bgp [(1-255) (1-255) (1-255)]",
15051 NO_STR
15052 "Define an administrative distance\n"
15053 "BGP distance\n"
15054 "Distance for routes external to the AS\n"
15055 "Distance for routes internal to the AS\n"
15056 "Distance for local routes\n")
15057 {
15058 VTY_DECLVAR_CONTEXT(bgp, bgp);
15059 afi_t afi;
15060 safi_t safi;
15061
15062 afi = bgp_node_afi(vty);
15063 safi = bgp_node_safi(vty);
15064
15065 if (bgp->distance_ebgp[afi][safi] != 0
15066 || bgp->distance_ibgp[afi][safi] != 0
15067 || bgp->distance_local[afi][safi] != 0) {
15068 bgp->distance_ebgp[afi][safi] = 0;
15069 bgp->distance_ibgp[afi][safi] = 0;
15070 bgp->distance_local[afi][safi] = 0;
15071 bgp_announce_routes_distance_update(bgp, afi, safi);
15072 }
15073 return CMD_SUCCESS;
15074 }
15075
15076
15077 DEFUN (bgp_distance_source,
15078 bgp_distance_source_cmd,
15079 "distance (1-255) A.B.C.D/M",
15080 "Define an administrative distance\n"
15081 "Administrative distance\n"
15082 "IP source prefix\n")
15083 {
15084 int idx_number = 1;
15085 int idx_ipv4_prefixlen = 2;
15086 bgp_distance_set(vty, argv[idx_number]->arg,
15087 argv[idx_ipv4_prefixlen]->arg, NULL);
15088 return CMD_SUCCESS;
15089 }
15090
15091 DEFUN (no_bgp_distance_source,
15092 no_bgp_distance_source_cmd,
15093 "no distance (1-255) A.B.C.D/M",
15094 NO_STR
15095 "Define an administrative distance\n"
15096 "Administrative distance\n"
15097 "IP source prefix\n")
15098 {
15099 int idx_number = 2;
15100 int idx_ipv4_prefixlen = 3;
15101 bgp_distance_unset(vty, argv[idx_number]->arg,
15102 argv[idx_ipv4_prefixlen]->arg, NULL);
15103 return CMD_SUCCESS;
15104 }
15105
15106 DEFUN (bgp_distance_source_access_list,
15107 bgp_distance_source_access_list_cmd,
15108 "distance (1-255) A.B.C.D/M WORD",
15109 "Define an administrative distance\n"
15110 "Administrative distance\n"
15111 "IP source prefix\n"
15112 "Access list name\n")
15113 {
15114 int idx_number = 1;
15115 int idx_ipv4_prefixlen = 2;
15116 int idx_word = 3;
15117 bgp_distance_set(vty, argv[idx_number]->arg,
15118 argv[idx_ipv4_prefixlen]->arg, argv[idx_word]->arg);
15119 return CMD_SUCCESS;
15120 }
15121
15122 DEFUN (no_bgp_distance_source_access_list,
15123 no_bgp_distance_source_access_list_cmd,
15124 "no distance (1-255) A.B.C.D/M WORD",
15125 NO_STR
15126 "Define an administrative distance\n"
15127 "Administrative distance\n"
15128 "IP source prefix\n"
15129 "Access list name\n")
15130 {
15131 int idx_number = 2;
15132 int idx_ipv4_prefixlen = 3;
15133 int idx_word = 4;
15134 bgp_distance_unset(vty, argv[idx_number]->arg,
15135 argv[idx_ipv4_prefixlen]->arg, argv[idx_word]->arg);
15136 return CMD_SUCCESS;
15137 }
15138
15139 DEFUN (ipv6_bgp_distance_source,
15140 ipv6_bgp_distance_source_cmd,
15141 "distance (1-255) X:X::X:X/M",
15142 "Define an administrative distance\n"
15143 "Administrative distance\n"
15144 "IP source prefix\n")
15145 {
15146 bgp_distance_set(vty, argv[1]->arg, argv[2]->arg, NULL);
15147 return CMD_SUCCESS;
15148 }
15149
15150 DEFUN (no_ipv6_bgp_distance_source,
15151 no_ipv6_bgp_distance_source_cmd,
15152 "no distance (1-255) X:X::X:X/M",
15153 NO_STR
15154 "Define an administrative distance\n"
15155 "Administrative distance\n"
15156 "IP source prefix\n")
15157 {
15158 bgp_distance_unset(vty, argv[2]->arg, argv[3]->arg, NULL);
15159 return CMD_SUCCESS;
15160 }
15161
15162 DEFUN (ipv6_bgp_distance_source_access_list,
15163 ipv6_bgp_distance_source_access_list_cmd,
15164 "distance (1-255) X:X::X:X/M WORD",
15165 "Define an administrative distance\n"
15166 "Administrative distance\n"
15167 "IP source prefix\n"
15168 "Access list name\n")
15169 {
15170 bgp_distance_set(vty, argv[1]->arg, argv[2]->arg, argv[3]->arg);
15171 return CMD_SUCCESS;
15172 }
15173
15174 DEFUN (no_ipv6_bgp_distance_source_access_list,
15175 no_ipv6_bgp_distance_source_access_list_cmd,
15176 "no distance (1-255) X:X::X:X/M WORD",
15177 NO_STR
15178 "Define an administrative distance\n"
15179 "Administrative distance\n"
15180 "IP source prefix\n"
15181 "Access list name\n")
15182 {
15183 bgp_distance_unset(vty, argv[2]->arg, argv[3]->arg, argv[4]->arg);
15184 return CMD_SUCCESS;
15185 }
15186
15187 DEFUN (bgp_damp_set,
15188 bgp_damp_set_cmd,
15189 "bgp dampening [(1-45) [(1-20000) (1-50000) (1-255)]]",
15190 "BGP Specific commands\n"
15191 "Enable route-flap dampening\n"
15192 "Half-life time for the penalty\n"
15193 "Value to start reusing a route\n"
15194 "Value to start suppressing a route\n"
15195 "Maximum duration to suppress a stable route\n")
15196 {
15197 VTY_DECLVAR_CONTEXT(bgp, bgp);
15198 int idx_half_life = 2;
15199 int idx_reuse = 3;
15200 int idx_suppress = 4;
15201 int idx_max_suppress = 5;
15202 int half = DEFAULT_HALF_LIFE * 60;
15203 int reuse = DEFAULT_REUSE;
15204 int suppress = DEFAULT_SUPPRESS;
15205 int max = 4 * half;
15206
15207 if (argc == 6) {
15208 half = atoi(argv[idx_half_life]->arg) * 60;
15209 reuse = atoi(argv[idx_reuse]->arg);
15210 suppress = atoi(argv[idx_suppress]->arg);
15211 max = atoi(argv[idx_max_suppress]->arg) * 60;
15212 } else if (argc == 3) {
15213 half = atoi(argv[idx_half_life]->arg) * 60;
15214 max = 4 * half;
15215 }
15216
15217 /*
15218 * These can't be 0 but our SA doesn't understand the
15219 * way our cli is constructed
15220 */
15221 assert(reuse);
15222 assert(half);
15223 if (suppress < reuse) {
15224 vty_out(vty,
15225 "Suppress value cannot be less than reuse value \n");
15226 return 0;
15227 }
15228
15229 return bgp_damp_enable(bgp, bgp_node_afi(vty), bgp_node_safi(vty), half,
15230 reuse, suppress, max);
15231 }
15232
15233 DEFUN (bgp_damp_unset,
15234 bgp_damp_unset_cmd,
15235 "no bgp dampening [(1-45) [(1-20000) (1-50000) (1-255)]]",
15236 NO_STR
15237 "BGP Specific commands\n"
15238 "Enable route-flap dampening\n"
15239 "Half-life time for the penalty\n"
15240 "Value to start reusing a route\n"
15241 "Value to start suppressing a route\n"
15242 "Maximum duration to suppress a stable route\n")
15243 {
15244 VTY_DECLVAR_CONTEXT(bgp, bgp);
15245 return bgp_damp_disable(bgp, bgp_node_afi(vty), bgp_node_safi(vty));
15246 }
15247
15248 /* Display specified route of BGP table. */
15249 static int bgp_clear_damp_route(struct vty *vty, const char *view_name,
15250 const char *ip_str, afi_t afi, safi_t safi,
15251 struct prefix_rd *prd, int prefix_check)
15252 {
15253 int ret;
15254 struct prefix match;
15255 struct bgp_dest *dest;
15256 struct bgp_dest *rm;
15257 struct bgp_path_info *pi;
15258 struct bgp_path_info *pi_temp;
15259 struct bgp *bgp;
15260 struct bgp_table *table;
15261
15262 /* BGP structure lookup. */
15263 if (view_name) {
15264 bgp = bgp_lookup_by_name(view_name);
15265 if (bgp == NULL) {
15266 vty_out(vty, "%% Can't find BGP instance %s\n",
15267 view_name);
15268 return CMD_WARNING;
15269 }
15270 } else {
15271 bgp = bgp_get_default();
15272 if (bgp == NULL) {
15273 vty_out(vty, "%% No BGP process is configured\n");
15274 return CMD_WARNING;
15275 }
15276 }
15277
15278 /* Check IP address argument. */
15279 ret = str2prefix(ip_str, &match);
15280 if (!ret) {
15281 vty_out(vty, "%% address is malformed\n");
15282 return CMD_WARNING;
15283 }
15284
15285 match.family = afi2family(afi);
15286
15287 if ((safi == SAFI_MPLS_VPN) || (safi == SAFI_ENCAP)
15288 || (safi == SAFI_EVPN)) {
15289 for (dest = bgp_table_top(bgp->rib[AFI_IP][safi]); dest;
15290 dest = bgp_route_next(dest)) {
15291 const struct prefix *dest_p = bgp_dest_get_prefix(dest);
15292
15293 if (prd && memcmp(dest_p->u.val, prd->val, 8) != 0)
15294 continue;
15295 table = bgp_dest_get_bgp_table_info(dest);
15296 if (!table)
15297 continue;
15298 rm = bgp_node_match(table, &match);
15299 if (rm == NULL)
15300 continue;
15301
15302 const struct prefix *rm_p = bgp_dest_get_prefix(dest);
15303
15304 if (!prefix_check
15305 || rm_p->prefixlen == match.prefixlen) {
15306 pi = bgp_dest_get_bgp_path_info(rm);
15307 while (pi) {
15308 if (pi->extra && pi->extra->damp_info) {
15309 pi_temp = pi->next;
15310 bgp_damp_info_free(
15311 pi->extra->damp_info,
15312 1, afi, safi);
15313 pi = pi_temp;
15314 } else
15315 pi = pi->next;
15316 }
15317 }
15318
15319 bgp_dest_unlock_node(rm);
15320 }
15321 } else {
15322 dest = bgp_node_match(bgp->rib[afi][safi], &match);
15323 if (dest != NULL) {
15324 const struct prefix *dest_p = bgp_dest_get_prefix(dest);
15325
15326 if (!prefix_check
15327 || dest_p->prefixlen == match.prefixlen) {
15328 pi = bgp_dest_get_bgp_path_info(dest);
15329 while (pi) {
15330 if (pi->extra && pi->extra->damp_info) {
15331 pi_temp = pi->next;
15332 bgp_damp_info_free(
15333 pi->extra->damp_info,
15334 1, afi, safi);
15335 pi = pi_temp;
15336 } else
15337 pi = pi->next;
15338 }
15339 }
15340
15341 bgp_dest_unlock_node(dest);
15342 }
15343 }
15344
15345 return CMD_SUCCESS;
15346 }
15347
15348 DEFUN (clear_ip_bgp_dampening,
15349 clear_ip_bgp_dampening_cmd,
15350 "clear ip bgp dampening",
15351 CLEAR_STR
15352 IP_STR
15353 BGP_STR
15354 "Clear route flap dampening information\n")
15355 {
15356 bgp_damp_info_clean(AFI_IP, SAFI_UNICAST);
15357 return CMD_SUCCESS;
15358 }
15359
15360 DEFUN (clear_ip_bgp_dampening_prefix,
15361 clear_ip_bgp_dampening_prefix_cmd,
15362 "clear ip bgp dampening A.B.C.D/M",
15363 CLEAR_STR
15364 IP_STR
15365 BGP_STR
15366 "Clear route flap dampening information\n"
15367 "IPv4 prefix\n")
15368 {
15369 int idx_ipv4_prefixlen = 4;
15370 return bgp_clear_damp_route(vty, NULL, argv[idx_ipv4_prefixlen]->arg,
15371 AFI_IP, SAFI_UNICAST, NULL, 1);
15372 }
15373
15374 DEFUN (clear_ip_bgp_dampening_address,
15375 clear_ip_bgp_dampening_address_cmd,
15376 "clear ip bgp dampening A.B.C.D",
15377 CLEAR_STR
15378 IP_STR
15379 BGP_STR
15380 "Clear route flap dampening information\n"
15381 "Network to clear damping information\n")
15382 {
15383 int idx_ipv4 = 4;
15384 return bgp_clear_damp_route(vty, NULL, argv[idx_ipv4]->arg, AFI_IP,
15385 SAFI_UNICAST, NULL, 0);
15386 }
15387
15388 DEFUN (clear_ip_bgp_dampening_address_mask,
15389 clear_ip_bgp_dampening_address_mask_cmd,
15390 "clear ip bgp dampening A.B.C.D A.B.C.D",
15391 CLEAR_STR
15392 IP_STR
15393 BGP_STR
15394 "Clear route flap dampening information\n"
15395 "Network to clear damping information\n"
15396 "Network mask\n")
15397 {
15398 int idx_ipv4 = 4;
15399 int idx_ipv4_2 = 5;
15400 int ret;
15401 char prefix_str[BUFSIZ];
15402
15403 ret = netmask_str2prefix_str(argv[idx_ipv4]->arg, argv[idx_ipv4_2]->arg,
15404 prefix_str, sizeof(prefix_str));
15405 if (!ret) {
15406 vty_out(vty, "%% Inconsistent address and mask\n");
15407 return CMD_WARNING;
15408 }
15409
15410 return bgp_clear_damp_route(vty, NULL, prefix_str, AFI_IP, SAFI_UNICAST,
15411 NULL, 0);
15412 }
15413
15414 static void show_bgp_peerhash_entry(struct hash_bucket *bucket, void *arg)
15415 {
15416 struct vty *vty = arg;
15417 struct peer *peer = bucket->data;
15418
15419 vty_out(vty, "\tPeer: %s %pSU\n", peer->host, &peer->su);
15420 }
15421
15422 DEFUN (show_bgp_listeners,
15423 show_bgp_listeners_cmd,
15424 "show bgp listeners",
15425 SHOW_STR
15426 BGP_STR
15427 "Display Listen Sockets and who created them\n")
15428 {
15429 bgp_dump_listener_info(vty);
15430
15431 return CMD_SUCCESS;
15432 }
15433
15434 DEFUN (show_bgp_peerhash,
15435 show_bgp_peerhash_cmd,
15436 "show bgp peerhash",
15437 SHOW_STR
15438 BGP_STR
15439 "Display information about the BGP peerhash\n")
15440 {
15441 struct list *instances = bm->bgp;
15442 struct listnode *node;
15443 struct bgp *bgp;
15444
15445 for (ALL_LIST_ELEMENTS_RO(instances, node, bgp)) {
15446 vty_out(vty, "BGP: %s\n", bgp->name);
15447 hash_iterate(bgp->peerhash, show_bgp_peerhash_entry,
15448 vty);
15449 }
15450
15451 return CMD_SUCCESS;
15452 }
15453
15454 /* also used for encap safi */
15455 static void bgp_config_write_network_vpn(struct vty *vty, struct bgp *bgp,
15456 afi_t afi, safi_t safi)
15457 {
15458 struct bgp_dest *pdest;
15459 struct bgp_dest *dest;
15460 struct bgp_table *table;
15461 const struct prefix *p;
15462 const struct prefix_rd *prd;
15463 struct bgp_static *bgp_static;
15464 mpls_label_t label;
15465
15466 /* Network configuration. */
15467 for (pdest = bgp_table_top(bgp->route[afi][safi]); pdest;
15468 pdest = bgp_route_next(pdest)) {
15469 table = bgp_dest_get_bgp_table_info(pdest);
15470 if (!table)
15471 continue;
15472
15473 for (dest = bgp_table_top(table); dest;
15474 dest = bgp_route_next(dest)) {
15475 bgp_static = bgp_dest_get_bgp_static_info(dest);
15476 if (bgp_static == NULL)
15477 continue;
15478
15479 p = bgp_dest_get_prefix(dest);
15480 prd = (const struct prefix_rd *)bgp_dest_get_prefix(
15481 pdest);
15482
15483 /* "network" configuration display. */
15484 label = decode_label(&bgp_static->label);
15485
15486 vty_out(vty, " network %pFX rd %pRD", p, prd);
15487 if (safi == SAFI_MPLS_VPN)
15488 vty_out(vty, " label %u", label);
15489
15490 if (bgp_static->rmap.name)
15491 vty_out(vty, " route-map %s",
15492 bgp_static->rmap.name);
15493
15494 if (bgp_static->backdoor)
15495 vty_out(vty, " backdoor");
15496
15497 vty_out(vty, "\n");
15498 }
15499 }
15500 }
15501
15502 static void bgp_config_write_network_evpn(struct vty *vty, struct bgp *bgp,
15503 afi_t afi, safi_t safi)
15504 {
15505 struct bgp_dest *pdest;
15506 struct bgp_dest *dest;
15507 struct bgp_table *table;
15508 const struct prefix *p;
15509 const struct prefix_rd *prd;
15510 struct bgp_static *bgp_static;
15511 char buf[PREFIX_STRLEN * 2];
15512 char buf2[SU_ADDRSTRLEN];
15513 char esi_buf[ESI_STR_LEN];
15514
15515 /* Network configuration. */
15516 for (pdest = bgp_table_top(bgp->route[afi][safi]); pdest;
15517 pdest = bgp_route_next(pdest)) {
15518 table = bgp_dest_get_bgp_table_info(pdest);
15519 if (!table)
15520 continue;
15521
15522 for (dest = bgp_table_top(table); dest;
15523 dest = bgp_route_next(dest)) {
15524 bgp_static = bgp_dest_get_bgp_static_info(dest);
15525 if (bgp_static == NULL)
15526 continue;
15527
15528 char *macrouter = NULL;
15529
15530 if (bgp_static->router_mac)
15531 macrouter = prefix_mac2str(
15532 bgp_static->router_mac, NULL, 0);
15533 if (bgp_static->eth_s_id)
15534 esi_to_str(bgp_static->eth_s_id,
15535 esi_buf, sizeof(esi_buf));
15536 p = bgp_dest_get_prefix(dest);
15537 prd = (struct prefix_rd *)bgp_dest_get_prefix(pdest);
15538
15539 /* "network" configuration display. */
15540 if (p->u.prefix_evpn.route_type == 5) {
15541 char local_buf[PREFIX_STRLEN];
15542
15543 uint8_t family = is_evpn_prefix_ipaddr_v4((
15544 struct prefix_evpn *)p)
15545 ? AF_INET
15546 : AF_INET6;
15547 inet_ntop(family,
15548 &p->u.prefix_evpn.prefix_addr.ip.ip
15549 .addr,
15550 local_buf, sizeof(local_buf));
15551 snprintf(buf, sizeof(buf), "%s/%u", local_buf,
15552 p->u.prefix_evpn.prefix_addr
15553 .ip_prefix_length);
15554 } else {
15555 prefix2str(p, buf, sizeof(buf));
15556 }
15557
15558 if (bgp_static->gatewayIp.family == AF_INET
15559 || bgp_static->gatewayIp.family == AF_INET6)
15560 inet_ntop(bgp_static->gatewayIp.family,
15561 &bgp_static->gatewayIp.u.prefix, buf2,
15562 sizeof(buf2));
15563 vty_out(vty,
15564 " network %s rd %pRD ethtag %u label %u esi %s gwip %s routermac %s\n",
15565 buf, prd, p->u.prefix_evpn.prefix_addr.eth_tag,
15566 decode_label(&bgp_static->label), esi_buf, buf2,
15567 macrouter);
15568
15569 XFREE(MTYPE_TMP, macrouter);
15570 }
15571 }
15572 }
15573
15574 /* Configuration of static route announcement and aggregate
15575 information. */
15576 void bgp_config_write_network(struct vty *vty, struct bgp *bgp, afi_t afi,
15577 safi_t safi)
15578 {
15579 struct bgp_dest *dest;
15580 const struct prefix *p;
15581 struct bgp_static *bgp_static;
15582 struct bgp_aggregate *bgp_aggregate;
15583
15584 if ((safi == SAFI_MPLS_VPN) || (safi == SAFI_ENCAP)) {
15585 bgp_config_write_network_vpn(vty, bgp, afi, safi);
15586 return;
15587 }
15588
15589 if (afi == AFI_L2VPN && safi == SAFI_EVPN) {
15590 bgp_config_write_network_evpn(vty, bgp, afi, safi);
15591 return;
15592 }
15593
15594 /* Network configuration. */
15595 for (dest = bgp_table_top(bgp->route[afi][safi]); dest;
15596 dest = bgp_route_next(dest)) {
15597 bgp_static = bgp_dest_get_bgp_static_info(dest);
15598 if (bgp_static == NULL)
15599 continue;
15600
15601 p = bgp_dest_get_prefix(dest);
15602
15603 vty_out(vty, " network %pFX", p);
15604
15605 if (bgp_static->label_index != BGP_INVALID_LABEL_INDEX)
15606 vty_out(vty, " label-index %u",
15607 bgp_static->label_index);
15608
15609 if (bgp_static->rmap.name)
15610 vty_out(vty, " route-map %s", bgp_static->rmap.name);
15611
15612 if (bgp_static->backdoor)
15613 vty_out(vty, " backdoor");
15614
15615 vty_out(vty, "\n");
15616 }
15617
15618 /* Aggregate-address configuration. */
15619 for (dest = bgp_table_top(bgp->aggregate[afi][safi]); dest;
15620 dest = bgp_route_next(dest)) {
15621 bgp_aggregate = bgp_dest_get_bgp_aggregate_info(dest);
15622 if (bgp_aggregate == NULL)
15623 continue;
15624
15625 p = bgp_dest_get_prefix(dest);
15626
15627 vty_out(vty, " aggregate-address %pFX", p);
15628
15629 if (bgp_aggregate->as_set)
15630 vty_out(vty, " as-set");
15631
15632 if (bgp_aggregate->summary_only)
15633 vty_out(vty, " summary-only");
15634
15635 if (bgp_aggregate->rmap.name)
15636 vty_out(vty, " route-map %s", bgp_aggregate->rmap.name);
15637
15638 if (bgp_aggregate->origin != BGP_ORIGIN_UNSPECIFIED)
15639 vty_out(vty, " origin %s",
15640 bgp_origin2str(bgp_aggregate->origin));
15641
15642 if (bgp_aggregate->match_med)
15643 vty_out(vty, " matching-MED-only");
15644
15645 if (bgp_aggregate->suppress_map_name)
15646 vty_out(vty, " suppress-map %s",
15647 bgp_aggregate->suppress_map_name);
15648
15649 vty_out(vty, "\n");
15650 }
15651 }
15652
15653 void bgp_config_write_distance(struct vty *vty, struct bgp *bgp, afi_t afi,
15654 safi_t safi)
15655 {
15656 struct bgp_dest *dest;
15657 struct bgp_distance *bdistance;
15658
15659 /* Distance configuration. */
15660 if (bgp->distance_ebgp[afi][safi] && bgp->distance_ibgp[afi][safi]
15661 && bgp->distance_local[afi][safi]
15662 && (bgp->distance_ebgp[afi][safi] != ZEBRA_EBGP_DISTANCE_DEFAULT
15663 || bgp->distance_ibgp[afi][safi] != ZEBRA_IBGP_DISTANCE_DEFAULT
15664 || bgp->distance_local[afi][safi]
15665 != ZEBRA_IBGP_DISTANCE_DEFAULT)) {
15666 vty_out(vty, " distance bgp %d %d %d\n",
15667 bgp->distance_ebgp[afi][safi],
15668 bgp->distance_ibgp[afi][safi],
15669 bgp->distance_local[afi][safi]);
15670 }
15671
15672 for (dest = bgp_table_top(bgp_distance_table[afi][safi]); dest;
15673 dest = bgp_route_next(dest)) {
15674 bdistance = bgp_dest_get_bgp_distance_info(dest);
15675 if (bdistance != NULL)
15676 vty_out(vty, " distance %d %pBD %s\n",
15677 bdistance->distance, dest,
15678 bdistance->access_list ? bdistance->access_list
15679 : "");
15680 }
15681 }
15682
15683 /* Allocate routing table structure and install commands. */
15684 void bgp_route_init(void)
15685 {
15686 afi_t afi;
15687 safi_t safi;
15688
15689 /* Init BGP distance table. */
15690 FOREACH_AFI_SAFI (afi, safi)
15691 bgp_distance_table[afi][safi] = bgp_table_init(NULL, afi, safi);
15692
15693 /* IPv4 BGP commands. */
15694 install_element(BGP_NODE, &bgp_table_map_cmd);
15695 install_element(BGP_NODE, &bgp_network_cmd);
15696 install_element(BGP_NODE, &no_bgp_table_map_cmd);
15697
15698 install_element(BGP_NODE, &aggregate_addressv4_cmd);
15699
15700 /* IPv4 unicast configuration. */
15701 install_element(BGP_IPV4_NODE, &bgp_table_map_cmd);
15702 install_element(BGP_IPV4_NODE, &bgp_network_cmd);
15703 install_element(BGP_IPV4_NODE, &no_bgp_table_map_cmd);
15704
15705 install_element(BGP_IPV4_NODE, &aggregate_addressv4_cmd);
15706
15707 /* IPv4 multicast configuration. */
15708 install_element(BGP_IPV4M_NODE, &bgp_table_map_cmd);
15709 install_element(BGP_IPV4M_NODE, &bgp_network_cmd);
15710 install_element(BGP_IPV4M_NODE, &no_bgp_table_map_cmd);
15711 install_element(BGP_IPV4M_NODE, &aggregate_addressv4_cmd);
15712
15713 /* IPv4 labeled-unicast configuration. */
15714 install_element(BGP_IPV4L_NODE, &bgp_network_cmd);
15715 install_element(BGP_IPV4L_NODE, &aggregate_addressv4_cmd);
15716
15717 install_element(VIEW_NODE, &show_ip_bgp_instance_all_cmd);
15718 install_element(VIEW_NODE, &show_ip_bgp_afi_safi_statistics_cmd);
15719 install_element(VIEW_NODE, &show_ip_bgp_l2vpn_evpn_statistics_cmd);
15720 install_element(VIEW_NODE, &show_ip_bgp_dampening_params_cmd);
15721 install_element(VIEW_NODE, &show_ip_bgp_cmd);
15722 install_element(VIEW_NODE, &show_ip_bgp_route_cmd);
15723 install_element(VIEW_NODE, &show_ip_bgp_regexp_cmd);
15724 install_element(VIEW_NODE, &show_ip_bgp_statistics_all_cmd);
15725
15726 install_element(VIEW_NODE,
15727 &show_ip_bgp_instance_neighbor_advertised_route_cmd);
15728 install_element(VIEW_NODE,
15729 &show_ip_bgp_instance_neighbor_bestpath_route_cmd);
15730 install_element(VIEW_NODE, &show_ip_bgp_neighbor_routes_cmd);
15731 install_element(VIEW_NODE,
15732 &show_ip_bgp_neighbor_received_prefix_filter_cmd);
15733 #ifdef KEEP_OLD_VPN_COMMANDS
15734 install_element(VIEW_NODE, &show_ip_bgp_vpn_all_route_prefix_cmd);
15735 #endif /* KEEP_OLD_VPN_COMMANDS */
15736 install_element(VIEW_NODE, &show_bgp_afi_vpn_rd_route_cmd);
15737 install_element(VIEW_NODE,
15738 &show_bgp_l2vpn_evpn_route_prefix_cmd);
15739
15740 /* BGP dampening clear commands */
15741 install_element(ENABLE_NODE, &clear_ip_bgp_dampening_cmd);
15742 install_element(ENABLE_NODE, &clear_ip_bgp_dampening_prefix_cmd);
15743
15744 install_element(ENABLE_NODE, &clear_ip_bgp_dampening_address_cmd);
15745 install_element(ENABLE_NODE, &clear_ip_bgp_dampening_address_mask_cmd);
15746
15747 /* prefix count */
15748 install_element(ENABLE_NODE,
15749 &show_ip_bgp_instance_neighbor_prefix_counts_cmd);
15750 #ifdef KEEP_OLD_VPN_COMMANDS
15751 install_element(ENABLE_NODE,
15752 &show_ip_bgp_vpn_neighbor_prefix_counts_cmd);
15753 #endif /* KEEP_OLD_VPN_COMMANDS */
15754
15755 /* New config IPv6 BGP commands. */
15756 install_element(BGP_IPV6_NODE, &bgp_table_map_cmd);
15757 install_element(BGP_IPV6_NODE, &ipv6_bgp_network_cmd);
15758 install_element(BGP_IPV6_NODE, &no_bgp_table_map_cmd);
15759
15760 install_element(BGP_IPV6_NODE, &aggregate_addressv6_cmd);
15761
15762 install_element(BGP_IPV6M_NODE, &ipv6_bgp_network_cmd);
15763
15764 /* IPv6 labeled unicast address family. */
15765 install_element(BGP_IPV6L_NODE, &ipv6_bgp_network_cmd);
15766 install_element(BGP_IPV6L_NODE, &aggregate_addressv6_cmd);
15767
15768 install_element(BGP_NODE, &bgp_distance_cmd);
15769 install_element(BGP_NODE, &no_bgp_distance_cmd);
15770 install_element(BGP_NODE, &bgp_distance_source_cmd);
15771 install_element(BGP_NODE, &no_bgp_distance_source_cmd);
15772 install_element(BGP_NODE, &bgp_distance_source_access_list_cmd);
15773 install_element(BGP_NODE, &no_bgp_distance_source_access_list_cmd);
15774 install_element(BGP_IPV4_NODE, &bgp_distance_cmd);
15775 install_element(BGP_IPV4_NODE, &no_bgp_distance_cmd);
15776 install_element(BGP_IPV4_NODE, &bgp_distance_source_cmd);
15777 install_element(BGP_IPV4_NODE, &no_bgp_distance_source_cmd);
15778 install_element(BGP_IPV4_NODE, &bgp_distance_source_access_list_cmd);
15779 install_element(BGP_IPV4_NODE, &no_bgp_distance_source_access_list_cmd);
15780 install_element(BGP_IPV4M_NODE, &bgp_distance_cmd);
15781 install_element(BGP_IPV4M_NODE, &no_bgp_distance_cmd);
15782 install_element(BGP_IPV4M_NODE, &bgp_distance_source_cmd);
15783 install_element(BGP_IPV4M_NODE, &no_bgp_distance_source_cmd);
15784 install_element(BGP_IPV4M_NODE, &bgp_distance_source_access_list_cmd);
15785 install_element(BGP_IPV4M_NODE,
15786 &no_bgp_distance_source_access_list_cmd);
15787 install_element(BGP_IPV6_NODE, &bgp_distance_cmd);
15788 install_element(BGP_IPV6_NODE, &no_bgp_distance_cmd);
15789 install_element(BGP_IPV6_NODE, &ipv6_bgp_distance_source_cmd);
15790 install_element(BGP_IPV6_NODE, &no_ipv6_bgp_distance_source_cmd);
15791 install_element(BGP_IPV6_NODE,
15792 &ipv6_bgp_distance_source_access_list_cmd);
15793 install_element(BGP_IPV6_NODE,
15794 &no_ipv6_bgp_distance_source_access_list_cmd);
15795 install_element(BGP_IPV6M_NODE, &bgp_distance_cmd);
15796 install_element(BGP_IPV6M_NODE, &no_bgp_distance_cmd);
15797 install_element(BGP_IPV6M_NODE, &ipv6_bgp_distance_source_cmd);
15798 install_element(BGP_IPV6M_NODE, &no_ipv6_bgp_distance_source_cmd);
15799 install_element(BGP_IPV6M_NODE,
15800 &ipv6_bgp_distance_source_access_list_cmd);
15801 install_element(BGP_IPV6M_NODE,
15802 &no_ipv6_bgp_distance_source_access_list_cmd);
15803
15804 /* BGP dampening */
15805 install_element(BGP_NODE, &bgp_damp_set_cmd);
15806 install_element(BGP_NODE, &bgp_damp_unset_cmd);
15807 install_element(BGP_IPV4_NODE, &bgp_damp_set_cmd);
15808 install_element(BGP_IPV4_NODE, &bgp_damp_unset_cmd);
15809 install_element(BGP_IPV4M_NODE, &bgp_damp_set_cmd);
15810 install_element(BGP_IPV4M_NODE, &bgp_damp_unset_cmd);
15811 install_element(BGP_IPV4L_NODE, &bgp_damp_set_cmd);
15812 install_element(BGP_IPV4L_NODE, &bgp_damp_unset_cmd);
15813 install_element(BGP_IPV6_NODE, &bgp_damp_set_cmd);
15814 install_element(BGP_IPV6_NODE, &bgp_damp_unset_cmd);
15815 install_element(BGP_IPV6M_NODE, &bgp_damp_set_cmd);
15816 install_element(BGP_IPV6M_NODE, &bgp_damp_unset_cmd);
15817 install_element(BGP_IPV6L_NODE, &bgp_damp_set_cmd);
15818 install_element(BGP_IPV6L_NODE, &bgp_damp_unset_cmd);
15819
15820 /* Large Communities */
15821 install_element(VIEW_NODE, &show_ip_bgp_large_community_list_cmd);
15822 install_element(VIEW_NODE, &show_ip_bgp_large_community_cmd);
15823
15824 /* show bgp ipv4 flowspec detailed */
15825 install_element(VIEW_NODE, &show_ip_bgp_flowspec_routes_detailed_cmd);
15826
15827 install_element(VIEW_NODE, &show_bgp_listeners_cmd);
15828 install_element(VIEW_NODE, &show_bgp_peerhash_cmd);
15829 }
15830
15831 void bgp_route_finish(void)
15832 {
15833 afi_t afi;
15834 safi_t safi;
15835
15836 FOREACH_AFI_SAFI (afi, safi) {
15837 bgp_table_unlock(bgp_distance_table[afi][safi]);
15838 bgp_distance_table[afi][safi] = NULL;
15839 }
15840 }
FRRouting mirror